Help
FortiGate
FortiGate Next Generation Firewall utilizes purpose-built security processors and threat intelligence security services from FortiGuard labs to deliver top-rated protection and high performance, including encrypted traffic.
amahdi
Staff
Staff

Created on ‎03-28-2024 07:22 AM

Article Id 307034

Troubleshooting Tip: Losing internet access after connecting to dialup IPsec VPN with split tunneling enabled

Description This article describes a possible cause for losing internet access after the user connects to a dial-up IPsec VPN configured with split tunneling enabled.
Scope FortiOS.
Solution
  • Upon configuring dial-up settings and enabling split tunneling, the user has to select accessible networks:

Dialup settings.jpg

 

  • As shown in the above screenshot, the user can select all (0.0.0.0/0) as a member of the accessible network group configured under the VPN settings.

  • So upon connecting to the VPN, the user will lose internet connectivity since there is no policy configured from the VPN tunnel to the wan interface as the user has enabled split tunneling to route only internal traffic through the tunnel.

Solution :
Double-check and confirm that only desired subnets are specified under the VPN-accessible network settings.
136
0 Kudos
Submit Article Idea
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.