vpnc

[vu pham]

Lonni J Friedman wrote:
> On Sat, Apr 5, 2008 at 10:29 PM, vu pham <vu at sivell.com> wrote:
>> I use vpnc on FC8. It does allow me to connect to the company networks, but
>> it stops all access to any other networks. I cannot browse any web sites
>> except my web site. When I disconnect the vpnc then I can go browsing the
>> Internet again.
>>
>>  Any advice is greatly appreciated.
> 
> Are you sure that's not intentional?  Is the vpnc connection changing
> the default route?
> 

The way the Cisco vpn client works is only routes specified by the VPN 
gateway will then be routed to the VPN gateway thru the tunnel, and the 
rest will use the default gateway of the PC. So if my company uses 
192.168.200/24 and 192.168.201/24 then all traffic on my home PC to 
these two networks will be routed thru the VPN tunnel to the VPN gateway 
and the rest will not go thru the  VPN tunnel. This applies for both 
Cisco clients on Windows and Linux.

The problem with Cisco client for Linux is it is not updated for newer 
kernels - IIRC since 2.6.22 or so - and the compilation gives errors.

I just looked at the route tables of my Windows PC. After the VPN tunnel 
is established, the company network routes are added to the route table 
with the gatyeway is the other end of the tunnel.

On Linux PC with vpnc, it shows all networks will go thru the tunnel. 
But because the VPN gateway is setup to route only specifed routes - 
company networks - so all other access are rejected.


Vu