cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1103
Views
0
Helpful
2
Replies

Can a split tunnel pose a security risk ??

cketan
Level 1
Level 1

Hello,

Wondering if setting up split tunnel for vpn clients using vpn client 3.0 to pix 515 using wild card mode-config can pose a security risk ?

Regards...Ketan

2 Replies 2

travis-dennis_2
Level 7
Level 7

In my never-too-humble opinion Split-tunnel is a huge security risk and should be avoided if at all possible. Very few reasons I can think of to allow it although I have had to allow it recently when a user was given access to our VPN to get to an internal FTP server but had to transfer data from across their WAN. Other than something like this I wouldn't do it at all.

"Usually" split mode is used for traffic management and not as a security feature....If you do not need to do it then dont...