The rationale is that your network admins can filter / protect your web traffic to reduce an attack vector. Unless your network admin(s) want to create a custom connection for you with split tunneling, all traffic normally routed to your internet gateway will be sent through the tunnel. There is an An圜onnect option on the client side to "Allow Local LAN Access", but this only allows your computer to see other devices, such as printers and whatnot, on your LAN (but not beyond). When you are connect to the VPN either Cisco An圜onnect chooses to either (a) route all your traffic through the tunnel, or (b) split only traffic destined for networks on the other end of the tunnel. The split tunneling feature is configured on the security appliance (Cisco ASA presumably), not on the An圜onnect client side. You will need to talk to your network administrator.
0 Comments
Leave a Reply. |