Solved

Bypass Site to Site VPN for internet access

Posted on 2013-11-14
8
463 Views
Last Modified: 2014-08-21
Hello All,
I'm a bit rusty on my VPN routing skills and want to see if you can offer a suggestion.

Here is the setup:
We have a remote user in another state. We have a ZyXel VPN router setup to connect back to our main office. The user's phone and computer are both plugged into the router. Everything works as it should. The problem right now is that if the user wants to access the internet, all the traffic is traveling back to the main office and then back which makes it incredibly slow.

Is there an option within the Firewall and/or his computer (Windows 7 Pro) that would allow us to redirect internet traffic to bypass the VPN connection?

*** I would just off the site to site VPN in the router and have his computer connect to the VPN whenever it needed to BUT - the phone needs to have the VPN site to site connection.

ZyXel VFG6005N VPN Router

Thanks in advance!
0
Comment
Question by:rheide
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 2
  • 2
  • +1
8 Comments
 
LVL 2

Expert Comment

by:Axis52401
ID: 39650093
In the VPN properties, in network settings, ipv4, and advanced there is a check box for use default gateway on remote network. Uncheck that.
0
 

Author Comment

by:rheide
ID: 39650140
Jason0923 - are you referring to the Firewall VPN settings? I'm having a hard time finding that (but I'll keep looking). It sounds more like you are talking about Windows network settings but there are no VPN settings in Windows since the firewall is handling all the VPN site to site traffic.

Let me know if I'm misunderstanding you!
0
 
LVL 15

Expert Comment

by:Skyler Kincaid
ID: 39650253
I have only worked with SonicWalls but what you are looking for is a "Tunnel All" option that should be disabled. This allows only request for the local subnets to be passed through the VPN but anything outside of the local network to bypass the VPN.

The DNS request may still come through the VPN but the traffic should go out over the internet connection.
0
Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

 
LVL 12

Accepted Solution

by:
Infamus earned 500 total points
ID: 39651904
It is called split tunnel and you should enable that on xytel.
0
 
LVL 15

Expert Comment

by:Skyler Kincaid
ID: 39652072
Infamus is correct. Thanks for reminding me for the term I was looking for.
0
 

Author Comment

by:rheide
ID: 39652103
Guys,
Thank you for all the help so far. I'm having a hard time finding this option. Not sure if it is because it doesn't exist or if I just can't find it. I'm attaching the VPN connection info - would you expect it to be here?

** I changed the IP address and also have the "Advanced Options" check mark checked so you can see everything.

Thanks!
VPN-screen.jpg
0
 
LVL 12

Expert Comment

by:Infamus
ID: 39652148
I would call them and ask where you can enable it.

Support Email
support@zyxel.com
Toll-Free1-800-978-7222 Website
www.us.zyxel.com 
Postal mail
ZyXEL Communications Inc. 1130 N. Miller Street, Anaheim, CA 92806-2001 U.S.A.
0
 

Author Comment

by:rheide
ID: 39942318
Does anyone have a favorite sub $400 VPN Firewall/Router that they can recommend that allows regular internet traffic to go out the WAN vs. over the VPN back to the main office?
0

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you're not part of the solution, you're part of the problem.   Tips on how to secure IoT devices, even the dumbest ones, so they can't be used as part of a DDoS botnet.  Use PRTG Network Monitor as one of the building blocks, to detect unusual…
For many of us, the  holiday season kindles the natural urge to give back to our friends, family members and communities. While it's easy for friends to notice the impact of such deeds, understanding the contributions of businesses and enterprises i…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question