SSL VPN
Reply
Contributor
globix
Posts: 24
Registered: ‎06-17-2010
0

Split tunneling option

Hello,

 

I've read the admin guide, and make some tests, but I don't see the difference between:

Enable Split Tunneling with allowed access to local subnet

Enable Split Tunneling

 

Both keep the default route and local routes....

 

Any idea?

Regards


Distinguished Expert
spuluka
Posts: 2,489
Registered: ‎03-30-2009
0

Re: Split tunneling option

When the "allowed access to local subnet" is selected the local subnet will always win in routing decisions.  This is defined as the network and mask assigned to the local computer nic.

 

Normally in split tunnel the network list downloaded to the computer will override any local routing table options and send traffic up through the tunnel.  If there is an overlap in this tunnelled traffic list with the local subnet you will lose access to local resources like printers and file shares.

Steve Puluka BSEET
Juniper Ambassador
Senior Network Engineer - UPMC Pittsburgh, PA
JNCIA-ER JNCIA-EX JNCIS-SEC JNCIP-SEC
JNCIS-FWV JNCIS-SSL
MCP - Managing Server 2003 MCP - Windows XP Professional
MCTS Windows 7
http://puluka.com/home
Moderator
zanyterp
Posts: 2,270
Registered: ‎11-19-2007
0

Re: Split tunneling option

+1 to spuluka
There is no response other than with local subnet allowed, the route table is not rewritten from scratch (which will disrupt shared drives/printers, for example)
Copyright© 1999-2013 Juniper Networks, Inc. All rights reserved.