SSH tunnel question
Jarod Wilson
jarod at wilsonet.com
Fri Feb 29 10:38:48 EST 2008
On Fri, 2008-02-29 at 10:06 -0500, Thomas Charron wrote:
> On Thu, Feb 28, 2008 at 9:50 PM, John Abreau <jabr at blu.org> wrote:
> > On Thu, February 28, 2008 8:27 am, Tom Buskey said:
> > Um, no. Unless you design your VPN to override everything, you have
> > full access to both the VPN subnet and your local network. I do this
> > at home on several of my machines; they're configured as clients on
> > my VPN at work, and they still see each other locally.
>
> Most cooperate Cisco and other VPN solutions will take over all
> traffic. OpenVPN doesn't have to do this, but many companies using
> proprietary clients do.
The Cisco vpn client has an option for 'split tunnel' so that you can
continue to have access to local systems. I use it quite often. The only
gotcha is that if you have lan-local-dns (i.e., dns records only
available inside your private network), you probably won't be able to
access stuff via dns names, without some craftiness (can be done with
some local nameserver magic though).
--
Jarod Wilson
jarod at wilsonet.com
More information about the gnhlug-discuss
mailing list