Beta
×

Welcome to the Slashdot Beta site -- learn more here. Use the link in the footer or click here to return to the Classic version of Slashdot.

Thank you!

Before you choose to head back to the Classic look of the site, we'd appreciate it if you share your thoughts on the Beta; your feedback is what drives our ongoing development.

Beta is different and we value you taking the time to try it out. Please take a look at the changes we've made in Beta and  learn more about it. Thanks for reading, and for making the site better!

VPN with single tunnel: best workaround?

Anonymous Coward writes | more than 7 years ago

Networking

An anonymous reader writes "When my VPN connection client is engaged, my web, email, and IM become disconnected (ALL traffic is forced to tunnel through the VPN). What alternatives do I have to regain those connections?

In other words, given a VPN policy that enforces a single tunnel on a client (contrast with a "split tunnel" wherein only VPN-bound traffic goes to VPN while other traffic goes out through normal internet gateway), what's the best workaround to get back some internet connectivity on the client side?

The VPN connection client is locked down — I receive a Cisco binary for windows only, and there are no settings I can change on it to allow split tunneling. I have no access to the VPN server itself, but I can set up relatively harmless software on servers behind the VPN (i.e., on the intranet that the VPN allows me to access).

For example, the setting up of proxy server(s) IS possible on the "intranet side" of the VPN, so I assume that one alternative (call it "Alternative A") would be to go through proxy(s). But that means that each time VPN connection gets made, I need to change at least three applications (web, email, IM) to go through a proxy, and vice-versa to undo the proxying. Is there an easy way to turn on/off proxying in Firefox (web), Eudora (mail) and Trillian (IM)? Or could I do some kind of local proxy server for these, and just change an address in the "hosts" file to make the switch?

Alternatively, could some kind of routing on the client side help here? (The ipconfig output implies that the VPN client changes the nework gateway into the VPN local address, which forces all traffic into the VPN tunnel; I doubt that the gateway can be changed.)

Alternatively, is there something useful to ask the VPN admins? The policy is clear that split tunneling is out of the question, but they might help is there were some relatively easy and safe way to provide connectivity to me."

cancel ×

comment

Slashdot Login

Need an Account?

Forgot your password?

Submission Text Formatting Tips

We support a small subset of HTML, namely these tags:

  • b
  • i
  • p
  • br
  • a
  • ol
  • ul
  • li
  • dl
  • dt
  • dd
  • em
  • strong
  • tt
  • blockquote
  • div
  • quote
  • ecode

"ecode" can be used for code snippets, for example:

<ecode>    while(1) { do_something(); } </ecode>