05-27-2008 12:54 PM - edited 03-09-2019 08:47 PM
When a user connects to our PIX 506E they are able to access the internal network. but cannot access the internet. they appear to be going through our internal ISA server. I have split tunnel turned on. On the client I right click icon in task bar and select stats - route details. And see my internal networks and SM's.
When I open IE and UN-check automatically detect settings on the LAN settigns, internet access works.
06-05-2008 08:33 PM
When you go to stats and click on route details, can you see ur internal network in secured routes?
06-09-2008 03:38 PM
msubtain,
Thank you for the reply.
Yes I see my internal network in the secured routes. The LAN routes are empty.
Now the tunnel details tab has under transport Local LAN disabled. Even though if I modify the connection enrty to allow local LAN access.
06-09-2008 06:05 PM
You can either use split tunnel (tunnel specified) or local lan at the same time (exclude specified with source set as 0.0.0.0 in ACL). They are mutually exclusive.
The reason why it might not be working when auto-detect is enabled; you might have WPAD configured on your EZVPN Server network and it would be taking the internet traffic from the client machine through your Proxy located behind the EZVPN Server, instead of going directly from VPN Client >> Internet.
Have a look at:
Regards
Farrukh
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide