[VPN] Local network neighborhood gone when VPN connects
safieradam
safieradam at hotmail.com
Wed Mar 12 15:17:16 EST 2003
On the Cisco VPN 3000 the admin can also create a special subnet and define
it as being behind your client and accessible during the VPN connection.
The admin would need you LAN addressing info to do it.
If I were an admin I would fight against doing it except for very special
cases, like for the CSO (who should know better) or for a remote office in a
bankrupt company. Too much specific manual labor setting it up for
individual users. Also a bit of a security risk. Do you really want your
kids (and their friends) accessing your office network via your VPN
connection? OK, not you, but what about others who have home networks.
I'm having too much fun thinking of the reasons NOT to do it.
Adam Safier
----- Original Message -----
From: "John Ruff" <john at dndlabs.net>
To: "William D McNeese" <079928 at exchange.win.lanl.gov>; "David Pierson"
<davepier at bigpond.com>; <vpn at lists.shmoo.com>
Sent: Friday, March 07, 2003 12:37 AM
Subject: Re: [VPN] Local network neighborhood gone when VPN connects
> If the VPN concentrator is set to push client config to the vpn client
then
> the ability to do split tunneling will have to be enabled by your
sysadmin,
>
> -John
>
> On Wednesday 05 March 2003 01:04 pm, William D McNeese wrote:
> > What your seeing is "by design". This is to prevent some other system
to
> > gain access to your office network through your VPN. The concept is
called
> > "split tunneling" and by default it is disabled. Check through your
client
> > config to see if there is an option "allow split tunneling".
> >
> >
> > -----Original Message-----
> > From: David Pierson [mailto:davepier at bigpond.com]
> > Sent: Tuesday, March 04, 2003 6:30 AM
> > To: vpn at lists.shmoo.com
> > Subject: Re: [VPN] Local network neighborhood gone when VPN connects
> >
> >
> > Hi Nate,
> >
> > These are notes that I copied ages ago from someone's post ... they
> > don't say how to change it, but at least they confirm that you are not
> > alone. Maybe someone else can shed more light on why.
> > Regards, David Pierson
> >
> > ****.
> > The Cisco VPN client overides the home LAN settings from home once the
> > VPN session has been established. Your home network becomes invisible
> > to the rest of your home connected computers and all of the office LAN
> > is visable to only the PC with the VPN client running. I use a
> > Netgear router connected to the cable modem and DHCP on the home
> > network.
> >
> > I have never gotten an NT login screen through the VPN. My boss does
> > when he is at home, but I don't. It might be in how it is setup by
> > our IT group. [Depends on whether you already logged in to local PC]
> > No big deal, I just have a local batch file that maps
> > the office network drive letters. I just make the VPN connection
> > thourgh the cable modem and run the batch file and it is just like
> > having a NT profile on the office LAN.
> > ****
> >
> > ----- Original Message -----
> > From: "Nate Harel" <nharel at nettech-services.net>
> > To: <vpn at lists.shmoo.com>
> > Sent: Friday, February 28, 2003 6:41 AM
> > Subject: [VPN] Local network neighborhood gone when VPN connects
> >
> > > Hi,
> > >
> > > I set up a small VPN connction from my office to my home. At the
office,
> > > I have a WinXP machine via a Netgear router.
> > >
> > > At home I have a Win2K machine again via a Netgear router. I opened up
> >
> > port
> >
> > > 1723. I connect from my office, no problem. At home, my Win2K machine
> > > runs fine, I can see the local neighborhood (includes 2 other Win2K
> > > machines). However, if I check my other machines at home, the Network
> > > neighborhood, only shows my office machine on the net. It does not
show
> > > any of the local machines. When I disconnect the VPN, (after a bit of
a
> > > delay), I can see
> >
> > the
> >
> > > network again.
> > >
> > > What is doing this?
> > >
> > >
> > > Thanks
> > >
> > > Nate
> > >
> > >
> > >
> > >
> > > ----------
> > > Nate Harel
> > > NetTech Services
> > > 56 Pickering Street
> > > Needham, MA 02492
> > > Tel: 1-781-559-8176
> > > Toll Free: 1-877-567-8936
> > > FAX: 1-877-567-8936
> > > Email: nharel at nettech-services.com
> > > www.nettech-services.net
> > > www.onlineremotebackup.com
> > > www.nettech-hosting.com
> > > www.virtualofficephone.com
> > >
> > > ----------
> > >
> > >
> > >
> > >
> > >
> > >
> > > ----------------------------------
> > > Nate Harel
> > > NetTech Services
> > > 56 Pickering Street
> > > Needham, MA 02492-3198
> > > Tel: 1-781-559-8176
> > > Toll Free: 1-877-567-8936
> > > FAX: 1-877-567-8936
> > > Email: nharel at nettech-services.net
> > > www.nettech-services.net
> > > www.OnlineRemoteBackup.com
> > > www.VirtualOfficePhone.com
> > > www.nettech-hosting.com
> > >
> > > ----------------------------------
> > >
> > > _______________________________________________
> > > VPN mailing list
> > > VPN at lists.shmoo.com
> > > http://lists.shmoo.com/mailman/listinfo/vpn
> >
> > _______________________________________________
> > VPN mailing list
> > VPN at lists.shmoo.com
> > http://lists.shmoo.com/mailman/listinfo/vpn
> > _______________________________________________
> > VPN mailing list
> > VPN at lists.shmoo.com
> > http://lists.shmoo.com/mailman/listinfo/vpn
>
> --
> "Shortcuts make for long delays!" --J.R.R Tolken
>
>
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com
> http://lists.shmoo.com/mailman/listinfo/vpn
>
More information about the VPN
mailing list