seeing outside corporate network when on VPN
in [Wireless Internet]
|
From: wbsurfver on 28 Jan 2008 20:31 When I work at home, I connect to the company intranet through the company VPN from either my condo or my mothers house. In both cases I use a netgear WGR614 wireless router. The VPN is located physically at the company. Once I am on the company intranet through the VPN, I can access the company development websites, but I can't see the regular internet at all. I would like to be able to see the regular internet as well as the company intranet. What do I need to figure out ? Here is what ip[config shows when I am not on the VPN: C:\ugc\widget-bak\widgets>ipconfig Windows IP Configuration Ethernet adapter Bluetooth Network Connection: Media State . . . . . . . . . . . : Media disconnected Ethernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Ethernet adapter Wireless Network Connection: Connection-specific DNS Suffix . : IP Address. . . . . . . . . . . . : 192.168.2.2 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.2.1 C:\ugc\widget-bak\widgets> Here is what ipconfig shows when I am on the VPN, I edited the ip address here for confidentiality of course: ============================= C:\ugc\widget-bak\widgets>ipconfig Windows IP Configuration Ethernet adapter Bluetooth Network Connection: Media State . . . . . . . . . . . : Media disconnected Ethernet adapter Local Area Connection: Media State . . . . . . . . . . . : Media disconnected Ethernet adapter Wireless Network Connection: Connection-specific DNS Suffix . : IP Address. . . . . . . . . . . . : 192.168.2.2 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.2.1 PPP adapter Connect to my-company Corporate LAN - Go to webvpn.my- company.com in stead of dialing directly: Connection-specific DNS Suffix . : office.mycompany.com IP Address. . . . . . . . . . . . : 10.6x.0.8x Subnet Mask . . . . . . . . . . . : 255.255.255.255 Default Gateway . . . . . . . . . : C:\ugc\widget-bak\widgets>
From: dold on 28 Jan 2008 20:51 wbsurfver(a)yahoo.com <wbsurfver(a)gmail.com> wrote: > Once I am on the company intranet through the VPN, I can access the > company development websites, but I can't see the regular internet at > all. I would like to be able to see the regular internet as well as > the company intranet. What do I need to figure out ? When you are at work, can you get to the internet? This is likely a feature of your company's VPN configuration. With Nortel, it is called "Mandatory Tunnel Mode", where it is mandatory that all traffic pass through the VPN tunnel. This is usually a good thing, unless you have devices on your local network that you want to reach. The alternative would be split tunneling, where you would be able to see devices through the VPN, and also your original network. You have no control over it, but the VPN admins probably do. There's also another set, where you can get to the company VPN, maybe the internet through them, and also are allowed access to your home network, if it is of the prescribed address setting. I forget what that's called. Soft Tunneling? -- Clarence A Dold - Hidden Valley Lake, CA, USA GPS: 38.8,-122.5
From: BigJim on 29 Jan 2008 14:36 you will not be able to surf the web as you company has blocked access to it for security reasons. Most major companies do this. It may be a breach of security to attempt a bypass and could result in being dismissed. "wbsurfver(a)yahoo.com" <wbsurfver(a)gmail.com> wrote in message news:2f8acf5c-8e1b-446d-a3ad-4e5a8396b40d(a)l32g2000hse.googlegroups.com... > > When I work at home, I connect to the company intranet through the > company VPN from either my condo or my mothers house. In both cases I > use a netgear WGR614 wireless router. The VPN is located physically at > the company. > > Once I am on the company intranet through the VPN, I can access the > company development websites, but I can't see the regular internet at > all. I would like to be able to see the regular internet as well as > the company intranet. What do I need to figure out ? > > > Here is what ip[config shows when I am not on the VPN: > > > C:\ugc\widget-bak\widgets>ipconfig > > Windows IP Configuration > > > Ethernet adapter Bluetooth Network Connection: > > Media State . . . . . . . . . . . : Media disconnected > > Ethernet adapter Local Area Connection: > > Media State . . . . . . . . . . . : Media disconnected > > Ethernet adapter Wireless Network Connection: > > Connection-specific DNS Suffix . : > IP Address. . . . . . . . . . . . : 192.168.2.2 > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > Default Gateway . . . . . . . . . : 192.168.2.1 > > C:\ugc\widget-bak\widgets> > > > > Here is what ipconfig shows when I am on the VPN, I edited the ip > address here for confidentiality of course: > > ============================= > > C:\ugc\widget-bak\widgets>ipconfig > > Windows IP Configuration > > > Ethernet adapter Bluetooth Network Connection: > > Media State . . . . . . . . . . . : Media disconnected > > Ethernet adapter Local Area Connection: > > Media State . . . . . . . . . . . : Media disconnected > > Ethernet adapter Wireless Network Connection: > > Connection-specific DNS Suffix . : > IP Address. . . . . . . . . . . . : 192.168.2.2 > Subnet Mask . . . . . . . . . . . : 255.255.255.0 > Default Gateway . . . . . . . . . : 192.168.2.1 > > PPP adapter Connect to my-company Corporate LAN - Go to webvpn.my- > company.com in > stead of dialing directly: > > Connection-specific DNS Suffix . : office.mycompany.com > IP Address. . . . . . . . . . . . : 10.6x.0.8x > Subnet Mask . . . . . . . . . . . : 255.255.255.255 > Default Gateway . . . . . . . . . : > > C:\ugc\widget-bak\widgets> >
From: Jeff Liebermann on 29 Jan 2008 23:34 "wbsurfver(a)yahoo.com" <wbsurfver(a)gmail.com> hath wroth: > When I work at home, I connect to the company intranet through the >company VPN from either my condo or my mothers house. In both cases I >use a netgear WGR614 wireless router. The VPN is located physically at >the company. > > Once I am on the company intranet through the VPN, I can access the >company development websites, but I can't see the regular internet at >all. I would like to be able to see the regular internet as well as >the company intranet. What do I need to figure out ? That's the usual way a VPN is setup. When you're connected to the corporate LAN (through the VPN), then you do not have access to the internet. You can tweak it by changing the setting for the default gateway. There are two choices. Use gateway on remote system and use local gateway. The local gateway will give you internet access. It will also probably violate the companies rules and open your system to a grab bag of exploits and security issues. The worst would be to bridge (or tunnel) between the internet and the corporate LAN, essentially exposing the company network to the internet direction, without the benifits of a firewall. If you must surf the internet, disconnect from the corporate VPN, and your default gateway will be restored to the local router, which will give you internet access. -- Jeff Liebermann jeffl(a)cruzio.com 150 Felker St #D http://www.LearnByDestroying.com Santa Cruz CA 95060 http://802.11junk.com Skype: JeffLiebermann AE6KS 831-336-2558
From: dold on 31 Jan 2008 01:42
Jeff Liebermann <jeffl(a)cruzio.com> wrote: > That's the usual way a VPN is setup. When you're connected to the > corporate LAN (through the VPN), then you do not have access to the > internet. I disagree. Your route to the internet is through the corporate LAN not usually cut off. Most companies allow access to the internet. > You can tweak it by changing the setting for the default gateway. I disagree. If the corporate VPN is tunneled, you have no access to your local LAN at all, including your own gateway. Even with a split tunnel on a Nortel VPN, I can't change the routing once the VPN is started. Some things I can set permanent routes for before I connect the VPN, some are taken by the corporate VPN. -- Clarence A Dold - Hidden Valley Lake, CA, USA GPS: 38.8,-122.5 |