90% of attacks start with a phish. It’s critical that IT admins and MSSPs have the right security in place to protect their end users from these phishing attacks. Check out our latest feature brief for tips and tricks to keep your employees off a hackers line!
Local LAN access while tunneled thru a Windows 7 Microsoft VPN?
Hello - we have the need to access local LAN resources from a machine, while also being tunneled in to another, remote Windows 2003 network over the Internet, thru a Windows 7 / XP VPN connection, and not have the local LAN resources cut off. Is this possible to do?
thanks
thanks
Asked:
-
3
2
2 Solutions
Yes it is, this is called split tunneling. although NOT recommended. if someone gets access to your locsl LAN then can tunnel through your machine to the VPN.
http://www.isinc.com/2011/08/30/configuring-a-split-tunnel-pptp-vpn-in-windows-7/
hope this helps
http://www.isinc.com/2011/08/30/configuring-a-split-tunnel-pptp-vpn-in-windows-7/
hope this helps
Sorry for the delay, gentlemen. I am trying the Windows VPN with the option for "Using default gateway" unchecked, and it does not change the result. Still cuts off the loacl LAN, while connected. I'm attaching screen shots of the settings and what I'm seeing, in case it helps. thanks
VPN-Network-Setting.pdf
IPconfig-Before---After.pdf
Route-table-Before---After.pdf
VPN-Network-Setting.pdf
IPconfig-Before---After.pdf
Route-table-Before---After.pdf
Though the default gateway change has been the solution since NT4 and I have used it dozens of times, after looking at your screenshots I just tried it on my Win 8 machine, connecting to both a 2008 and 2011 server, and using route print and tracert, I see I have the same issue. I am wondering if something has changed since the release of Win7. I am quite sure I have done so on Win 7 in the past, but I will look into it further. Microsoft is tightening security where possible so this may have changed at some point as split-tunneling is a security risk and the greatest risk when using a VPN.
Question has a verified solution.
Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.
Have a better answer? Share it in a comment.
Join & Write a Comment Already a member? Login.
Featured Post
The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.
One of a set of tools we're offering as a way of saying thank you for being a part of the community.
Tackle projects and never again get stuck behind a technical roadblock.
Join Now
There is a security feature in the VPN client that blocks local connections, including local Internet access, to protect the office/remote network. You can disable this if you wish. To do so on the client/connecting PC, go to:
For XP: control panel | network connections | right click on the VPN/Virtual adapter and choose properties | Networking | TCP/IP -properties | Advanced | General | un-check "Use default gateway on remote network"
For Vista: control panel | network & sharing center | connections | manage network connections | right click on the VPN/Virtual adapter and choose properties | Networking | Internet Protocol Version 4 (TCP/IP v4) -properties | Advanced | IP settings | un-check "Use default gateway on remote network")
For Win 7: control panel | network & sharing center | change adapter settings | right click on the VPN/Virtual adapter and choose properties | Networking | Internet Protocol Version 4 (TCP/IP v4) -properties | Advanced | IP settings | un-check "Use default gateway on remote network")
If a 3rd party VPN such as Sonicwall, Cisco, etc. you need the VPN manager to allow Split-tunneling.