I have SoftEther VPN running fine on a Raspberry Pi, but it looks like I'm getting split tunnelling which I'd like to switch off. I want *all* traffic to go via the VPN, can anyone explain how I do this?
I think i've got split tunnelling enabled because I can access internal resources on the network fine, but when I use a IP geolocation web service it isn't telling me the location of my VPN server but the location of where I actually am.
Thanks,
Daniel
Disable split tunnelling?
-
- Posts: 24
- Joined: Tue Mar 25, 2014 8:29 pm
Re: Disable split tunnelling?
Split tunnel ist client based.
SEVPN-Client has a GUI option to do so, but if you use OpenVPN I think it's getting difficult.
SEVPN-Client has a GUI option to do so, but if you use OpenVPN I think it's getting difficult.
-
- Posts: 17
- Joined: Fri Jul 22, 2016 2:39 pm
Re: Disable split tunnelling?
a.woll wrote:
> Split tunnel ist client based.
> SEVPN-Client has a GUI option to do so, but if you use OpenVPN I think it's
> getting difficult.
thanks for the response. I thought split-tunnelling would be a server-side configuration. When I've set up Microsoft DirectAccess in the past this option is definitely server-side, so had assumed the same.
I use a Windows 10 computer, with the built-in VPN client. I'll check the config there otherwise might have to switch to the SEVPN-Client.
Cheers
> Split tunnel ist client based.
> SEVPN-Client has a GUI option to do so, but if you use OpenVPN I think it's
> getting difficult.
thanks for the response. I thought split-tunnelling would be a server-side configuration. When I've set up Microsoft DirectAccess in the past this option is definitely server-side, so had assumed the same.
I use a Windows 10 computer, with the built-in VPN client. I'll check the config there otherwise might have to switch to the SEVPN-Client.
Cheers
-
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: Disable split tunnelling?
I think split-tunneling isn't related to access the internet via VPN server.
I think problem is just whether the client use default gateway address or not.
http://blog.degree.no/2011/10/permanent ... n-windows/
I think problem is just whether the client use default gateway address or not.
http://blog.degree.no/2011/10/permanent ... n-windows/
-
- Posts: 17
- Joined: Fri Jul 22, 2016 2:39 pm
Re: Disable split tunnelling?
thanks, I think you're right.
I spotted yesterday that my client doesn't have a default gateway, so i think this could be it. Now I just need to work out: a) why it doesn't, and b) how to get dhcp to give it one
I spotted yesterday that my client doesn't have a default gateway, so i think this could be it. Now I just need to work out: a) why it doesn't, and b) how to get dhcp to give it one
-
- Posts: 17
- Joined: Fri Jul 22, 2016 2:39 pm
Re: Disable split tunnelling?
OK, I have enabled SecureNAT based on what I'm reading online. I have set DHCP to give out the 192.168.30.1 IP as the default gateway.
Clients connect OK but they either have a gateway of "0.0.0.0" (mobile phone) or blank (windows 10 laptop).
Does anyone have any ideas as to how i get the gateway set on clients, or a better way to do this?
Clients connect OK but they either have a gateway of "0.0.0.0" (mobile phone) or blank (windows 10 laptop).
Does anyone have any ideas as to how i get the gateway set on clients, or a better way to do this?
-
- Posts: 17
- Joined: Fri Jul 22, 2016 2:39 pm
Re: Disable split tunnelling?
Hi all - i'm really struggling with this. Any help would be most appreciated!
I simply want to be able to force my VPN clients to get a default gateway, thereby sending ALL traffic over the VPN rather. I'm trying to avoid using the SoftEther VPN client if possible because one of my devices is a phone, for which there is no VPN client other than the in-built one.
All VPN functionality works fine, bar this final piece where I want to send all internet traffic over the VPN. No clients get a default gateway and it looks like traffic is being split. In order to access internal (to the VPN server) resources I have to specify the FQDN.
I think my issue is that clients either have no default gateway at all, or their gateway is set to 0.0.0.0 - i imagine i could force static IP settings but, again, can't do this on the phone.
I simply want to be able to force my VPN clients to get a default gateway, thereby sending ALL traffic over the VPN rather. I'm trying to avoid using the SoftEther VPN client if possible because one of my devices is a phone, for which there is no VPN client other than the in-built one.
All VPN functionality works fine, bar this final piece where I want to send all internet traffic over the VPN. No clients get a default gateway and it looks like traffic is being split. In order to access internal (to the VPN server) resources I have to specify the FQDN.
I think my issue is that clients either have no default gateway at all, or their gateway is set to 0.0.0.0 - i imagine i could force static IP settings but, again, can't do this on the phone.
-
- Posts: 2458
- Joined: Mon Feb 24, 2014 11:03 am
Re: Disable split tunnelling?
I think the client ignore VPN default gateway by setting.
Please check client settings again.
Please check client settings again.