VPN + RDP

oli356 · 17 Nov 2012 at 17:32

Got a problem, not sure if there is a way around it though.

Using my work laptop to VPN into the network so I can use remote desktop connection to access a jump server to telnet into devices.

When at my desk I would rather use my KB/Mouse so I want to be able to RDP into my laptop (which I can do normally, but as soon as the laptop is on the VPN the desktop-laptop session fails)

Is there any way around this?

Thanks

PistolPete · 18 Nov 2012 at 12:26

Would require a reconfiguration of the VPN.

Currently the VPN client is using the default gateway on the VPN end of the connection so all traffic (including stuff that should be destined for your local subnet) travels over the VPN connection.

If you could get the VPN reconfigured to allow the use of the VPN clients default gateway then you'd be in business - however that's not very likely.

Potential solution - does a system like Teamviewer work when VPN'd in? If so, that would work.

oli356 · 24 Nov 2012 at 21:35

Will have to try something like teamviewer.

Not able to reconfigure the VPN (someone at work mentioned this a few days ago "Cisco forget they hire engineers"

ots3go · 25 Nov 2012 at 10:38

Enabled split tunneling on the client which is connecting to the VPN.

You'll find it under the IP settings of the VPN connector.

oli356 · 25 Nov 2012 at 12:17

Mine looks like this instead http://technet.microsoft.com/en-us/library/Bb457118.f24zs02_big(l=en-us).jpg

Obviously it will have an IP and DG entered. Should I just add my local networks DG?

ots3go · 25 Nov 2012 at 13:58

That looks like the normal LAN connection and not the VPN Client connection to me.

oli356 · 25 Nov 2012 at 14:37

It's the circled one.

Not sure what else it could be, the one on the far right is the same as well.

Morba · 25 Nov 2012 at 15:17

I've always found it easier to use logmein to connect to my spare work desktop from my laptop (or other device) and RDP from that, than use the company VPN.

ots3go · 26 Nov 2012 at 16:18

Strange, must be the installed adapter... with the standard Microsoft one you can ->

bremen1874 · 26 Nov 2012 at 16:53

I had similar issues when I had some users that needed to VPN into another companies systems. We had no control over the VPN configuration and as soon as the VPN came up the PCs dropped off the LAN. It could have been configured to work, but some quite reasonable security concerns stopped it happening.

The solution in this case was to fire up the XP virtual machine and connect to the VPN from there.

PistolPete · 26 Nov 2012 at 19:53

If it's Cisco client that will usually mean it's connecting to a Cisco device which means the config would need to be changed at the other end.

busbyuk · 26 Nov 2012 at 21:18

Sounds like you just need to exclude the local traffic RDP from the vpn traffic on the cisco itself.

You can do this by addng a route-map whoch points to the Nat access list on the Cisco and then adding that route-map to the appropriate port forward/nat statement on the cisco.

oli356 · 27 Nov 2012 at 18:31

Can't change the config on the other end.

Found teamviewer to be too slow, will try Splashtop or something..