Re: PPTP terminating on PIX and Split Tunneling

madube_vtl · ‎09-16-2004

When a user has established a VPN connection to a PIX using the the Microsoft PPTP client, does he still have access to Internet?

If we use the Cisco VPN client to established a VPN connection to a PIX, we have to enable Split-tunneling to be able to have access to Internet while being VPN connected (I know it is not recommended since it opens a hole but...). Is there a similar split-tunneling function with a PPTP VPN tunnel?

Thanks for your help. I will still try to test that but if anyone has the answer, it will save me time!!!

aztecmother · ‎09-16-2004

hi madube vtl,

it depends, if the microftp vpn client is useing the default gateway of the vpn connection then No, to turn this optoin off do the following, click on microsoft pptp client and go to propierties --> go to the networking tab --> hightlight internet protocol tcp/ip and click on propierties --> in the Internet Protocal general box click on advanced --> In the Advanced box that under general UNCHECK USE DEFAULT GATEWAY ON REMOTE COMPUTER. that should allow to connect to the vpn, and still be able to surf or recieve emails at the same time.

jose

madube_vtl · ‎09-16-2004

Thanks, I will test that.

mwdekker · ‎09-16-2004

If you're concerned about the security hole while split-tunneling, then you have the possibility of using no split-tunneling and browse the Internet via the inside LAN, only if there is an proxyserver to connect to.

The use of split-tunneling is there, because you cannot Internet back over the same interface you're coming from. (PPTP over the outside interface of the PIX)

Using a proxy, if present, could also be a solution!

Greetz.