Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
503
Views
0
Helpful
1
Replies

Remote Access & Split Tunnels

bedge
Level 1
Level 1

‎11-19-2008 05:34 PM

How safe is split tunneling a remote access vpn client 5.0.04.0300. The tunnel is termined on a ASA 5520 7.2. Management wants the webfiltered for remote users, we have a websense remote server in the dmz and a websense client on the laptops. I always thought split tunnels can pose a security risk.

Labels:
0 Helpful
1 Reply 1

andrew.prince
Level 10
Level 10

‎11-22-2008 07:24 AM

I my opionion I agree - if the remote users does not have an adequate firewall and AV, this poses a risk. They have access to the internet, while still connected to the network. If you are not using the built in firewall in the Cisco Client to limit traffic in/out - you might consider this.

I would however downgrade to version 4.8 straight away - I have read no end of comments from users in the forums about ver 5.x - flaky and just not ready. 4.8 stable - I have been running this on over 2000+ laptops with no issues for the last 1+ years.

What I generally do is tunnel all - and filter on the VPN device or second layer firewall. If you have WebSense - even better. Tunnel all and pass the web traffic into the DMZ for classification.

0 Helpful
Customers Also Viewed These Support Documents