Hi,
On 27.1.2014 15:46, Suresh Kumar N. wrote:
In a way Split Tunnel is a feature which can overturn Security aspect
provided by VPN, but at the same time cannot be overlooked as a feature.
Already some IPSec VPN setups create selective routes to the VPN, so for
example only certain corporate 10.x.x.x subnet goes through VPN while
other access doesn't.
Maybe the biggest challenge in these kind of configurations are servers
that can be access through both VPN and open internet. Sometimes such
servers have selective access rules based on source of the traffic. It
is not always clear which Metric the routes would have while that would
determine which of those would get used...
Safest in these setups is usually to setup DNS to point to the VPN which
is usually anyway required to access internal network resources.
Best regards,
- Jussi
_______________________________________________
Dev mailing list
[email protected]
https://lists.tizen.org/listinfo/dev
