Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


New but... | 12 comments | Create New Account
Click here to return to the 'New but...' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
New but...
Authored by: mkrus on Sep 07, '02 01:53:37PM
this is new to 10.2 I tried it out with my office VPN (MS via PPTP). It works fine except for one thing. When the VPN is active MacOS will route all your web traffic through it. If your VPN does not forward it to the outside, you've lost all access to anything but the VPN intranet. There's not much about it in the Apple discussion boards, except this. Apparently, if you know enough about unix, you can configure the router properly. Hopefully, Apple will have a GUI for this in 10.2.1...

[ Reply to This | # ]
New but...
Authored by: Anonymous on Sep 07, '02 01:58:10PM

I believe that this is how PPTP works. It is not as good of a VPN as IPSec, mostly since it was in use years before.

Even with using TunnelBuilder on OS9 to connect to a PPTP VPN you had this same issue.



[ Reply to This | # ]
New but...
Authored by: mkrus on Sep 07, '02 03:41:16PM

no, it's not related to PPTP, but to the way routing is handled when PPTP is activated.

For example, DigiTunnel, for previous MacOS versions, has an option to turn off the automatic routing of all traffic through the VPN.



[ Reply to This | # ]
actually a good idea
Authored by: richardflude on Sep 13, '02 09:22:20PM

Most VPN clients will drop internet access at the same time as they open a VPN connection. Most IT departments will in fact require this behaviour. This is to protect your VPN network from packets routed via your client from the internet.

This makes sense as it is likely your VPN connection has placed you onto a company's private LAN, therefore the company's security (and firewall) policy should apply, e.g. use the companies proxy for internet connections.

If you plan to bypass this feature assume your corporate IT guys will be very angry, it might even be advisable to take out some extra insurance - you'll need it when it is shown your computer was used to bypass the firewall for an attack!



[ Reply to This | # ]
actually a NOT good idea
Authored by: ptwithy on Oct 31, '02 05:07:21PM

This would only be a security issue if you set your machine up to act as a gateway. By default ip forwarding is off.



[ Reply to This | # ]
New but...
Authored by: LotzaPhunn on Sep 29, '04 12:04:56AM
Apparently, if you know enough about unix, you can configure the router properly.
Can anyboy give details about this? How can it be achieved? I need to be able to access the Internet while connected to my VPN. Thanks!!

[ Reply to This | # ]