Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations bkrike on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

need to connect to Internet over VPN 1

Status
Not open for further replies.
spdrcln

spdrcln

Technical User
Mar 4, 2004
13
CA
Hi,
I am having what I think may be a unique problem. We run 5 computers at remote bases that need to be part of our network for access to network resources and so that we can track internet useage. These machines are running WinXP Pro and we have a Win2000 domain. The machines can connect via VPN, and users can log on and get email, etc, however they cannot access the internet while the VPN is connected. The only account that can is the domain Admin account. I can't find anywhere where a permission might be set explaining this. Our gateway is an ISA Server. Any ideas?
 
Sort by date Sort by votes
quoted from
Can't access the Internet while using VPN

Symptom: after establishing a VPN connection, you may not be able to access the Internet because the VPN takes over your existing connection and all traffic to use the VPN default gateway on the remote network. The remote network may not allow VPN clients to access the Internet via their gateway.

Resolutions:
1) If you don't need to access the entire VPN resources, disable the "use default gateway on remote network" option in the properties of the VPN connection. To do that, go to VPN Connection->Properties->Network->TCP/IP->Properties->Advanced-, uncheck "Use default gateway on Remote Network".
2) Edit route table manually if you know how to or check routing page on this web site.
3) For the security reason, some firewall/routers like Cisco PIX do not allow access the Internet after establishing the VPN and you cannot modify the routing table. You may setup split-tunnel.


Robert Lin, MS-MVP, MCSE & CNE
Windows, Network, Internet, VPN, Routing and How to at
 
Upvote 0 Downvote
Hi Robert,
I had already tried to uncheck the "use default gateway on remote network" box, however that allows internet access but no access to the network.
About setting up a split tunnel, that would prevent ISA from logging the internet activity, right? What I can't figure out is why the Administrator gets acesss to the domain AND Internet but no one else can, not even another Administrator.
 
Upvote 0 Downvote
When you uncheck the "use default gateway on remote network" box, you lose your route to the office network. You'll need to add the route(s) manually.

Split-tunnel means that traffic destined for the office LAN is "tunnelled" through the VPN and other traffic is not. So yes, the VPN gateway would not see the internet traffic.

I haven't used Windows as a VPN gateway, so I can't answer your last question. It does seem strange. I'd start by seeing if there's a split-tunnel setup for Administrator, or if ISA is allowing the traffic.
 
Upvote 0 Downvote
I feel a little silly but I will post the solution to my own problem just in case it can help someone else. It turns out that all I had to do was go into Internet options under the connections tab and add in the proxy server address and port #. It's almost always something simple :)
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

F
  • Locked
  • Solved
some IP Phone not working over site-to-site OpenVPN, packets modified on other side of tunnel
Replies
1
Views
2K
FrankSider12
F
MP2023
  • Locked
  • Question
How to Create an site to site VPN
Replies
1
Views
639
sircles
sircles
teknance
  • Locked
  • Question
Discovering Portugal: Uncover Hidden Destinations and VPN Solutions
Replies
5
Views
976
GlobeTrekkerGal
GlobeTrekkerGal
sarahz2
  • Locked
  • Question
Best vpn safe and fast
Replies
4
Views
746
GlobeTrekkerGal
GlobeTrekkerGal
ramblingrebel
  • Locked
  • Question
Built-in Windows 10 VPN
Replies
1
Views
636
Joon Smith
Joon Smith

Part and Inventory Search

Sponsor

Back
Top