Table of Contents
Advertisement
Figure 218 Example of a Split Tunneling environment
PC2
In the example in the figure above, PC1 and PC2 are on a home IP network (20.20.20.0/
255.255.255.0). PC1 is also connected to the Internet with an ISP granted IP address of 200.x.x.x.
PC1 runs an IPSec VPN Client and connects to the Business Communications Manager. Business
Communications Manager assigns this VPN Client connection an IP address of 10.2.3.30.
If Split tunneling is disabled, PC1 will NOT be able to access PC2 as ALL traffic will be sent
down the IPSec tunnel.
However, if the Remote User Account has Split Tunneling enabled with split tunnel network IP
addresses of 10.2.3.0/255.255.255.0, PC1 can establish an IPSec tunnel. When the client
establishes an IPSec tunnel, this network address is loaded into the client application. PC1 can then
access any system on the 10.2.3.0 network as well as accessing PC2 on IP network 20.20.20.0,
while the VPN IPSec Client is still connected.
20.20.20.7
PC1
10.2.3.2/24
20.20.20.5
ISP Internet Address: 200.x.x.x
VPN Client IP Address: 10.2.3.30/24
IPSec Tunnel
Internet
300.x.x.x
Business Communications
Manager
10.2.3.1/24
Programming Operations Guide
IPSec
785
Advertisement
Table of Contents
