[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


Junos pulse when connected does not allow to access internet

Posted on 2014-04-04
Medium Priority
2 Endorsements
Last Modified: 2016-06-18
Junos pulse when connected does not allow to access internet
When i connect via the Junos Pulse VPN client and take a session then internet on my local system does not.

I have a broadbard connected and only when my VPN is connected my browser fails to open any pages.

Any tweeks?
Question by:mtthompsons
  • 3
LVL 65

Accepted Solution

btan earned 2000 total points
ID: 39979640
i was suspecting split tunnel is disabled. All network traffic from the endpoint goes through the VPN tunnel. Local networks are not available. There is an explanation on the various granular limit when it is disabled too. Note: Split tunneling resource policies are not in effect with split tunneling disabled.

All network traffic from the endpoint goes through the VPN tunnel. Local networks are not available. Pulse client users may choose to suspend the Pulse connection to allow local access if the Pulse connection set has the property Allow users to override connection policy enabled. VPN tunneling access control resource policies in effect for the user’s role determine which IP resources the user can access. Split tunneling resource policies are not in effect with split tunneling disabled.

This configuration provides the best security. However, the user has no access to local network resources.

If split tunnel is enabled, then you can further go into  defining the split tunnel resource policy, you can map to the user assigned role.

There is even a more interesting to manipulate with route metric even if split tunnel is disabled. But it will not be scalable as the patch for the vpn client will need to reverse back to old patch version...
LVL 37

Expert Comment

ID: 39980047
the common cause of the symptom is the option 'use the remote server as the default gateway' is checked in VPN configuration and the remote site does not allow internet access for VPN client.

make sure the above option is unchecked and see what happens.
LVL 65

Expert Comment

ID: 39980845
also good to note Juniper Networks VPN Tunneling adapter (Network Connect or Junos Pulse) default gateway is blank or on Windows client, see the kb details here

When you have disabled Split Tunneling, the Default Gateway is set to your VPN Tunneling IP since all network traffic from the client should go through the tunnel. In Windows XP, VPN Tunneling routes are added with a lower metric (the route with the lowest metric is the one which will be used), but in Vista/7 the local routes are removed completely to ensure all traffic is routed through the VPN tunnel.  (See KB17354 for more information.) The Default Gateway is also set to your VPN Tunneling IP when you have chosen Allow access to local subnet, but SA will preserve the route on the client retaining access to local resources such as printers.

Author Comment

ID: 39981341
Thank you all. Is there a direct solution for this?
Like a proven reason the internet does not work and steps to have it enabled even when connected via VPN
LVL 65

Expert Comment

ID: 39981909

Pls see above for troubleshooting guide from Juniper. You will need to share any error code or troubleshooting else it will be difficult to isolate. The a/m are common configuratiin thta may lead this symptoms.

Featured Post

Automating Your MSP Business

The road to profitability.
Delivering superior services is key to ensuring customer satisfaction and the consequent long-term relationships that enable MSPs to lock in predictable, recurring revenue. What's the best way to deliver superior service? One word: automation.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

With the evolution of technology, we have finally reached a point where it is possible to have home automation features like having your thermostat turn up and door lock itself when you leave, as well as a complete home security system. This is a st…
Securing your business data in current era should be your biggest priority. Numerous people are unaware of the fact that insiders commit more than 60 percent of security breaches. You need to figure out the underlying cause and invoke your potential…
The Email Laundry PDF encryption service allows companies to send confidential encrypted  emails to anybody. The PDF document can also contain attachments that are embedded in the encrypted PDF. The password is randomly generated by The Email Laundr…
When cloud platforms entered the scene, users and companies jumped on board to take advantage of the many benefits, like the ability to work and connect with company information from various locations. What many didn't foresee was the increased risk…

873 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question