well we are a IP V4 shop and we are just introducing windows 7 clients and it looks like if you have ip v4 and ip v6 enabled on teh machine your IP v4 connection does not allow split tunnel but your v6 ip can talk to other hosts using v6. any one else run into this or have a solution other than disabling ip v6 on every client?
Yes, we have seen this security flaw. It is a problem with the tcp/ip stack, so the issue is seen with other vendors besides Juniper. This issue is planned to be fixed in the new version 7 client, but don't quote me on that. Juniper is working with Microsoft on this.
Juniper's SIRT Team and the Product Team are working on a fix. Please contact the SIRT Team if you have further questions: [email protected]