About hoofdpijn

hoofdpijn · ‎04-30-2019

Ah! So when I remove the FQDN resources and tell the tunnel to only split by IP addresses, my local DNS servers no longer get overwritten by the pulse secure client.

hoofdpijn · ‎04-30-2019

Quick follow up question since I understand how this works now. How can I stop the pulse secure client from overwriting the local DNS on the client system local network adapter? I need this local resolution to work since we aren't allowing internet access through the tunnel. The server is set to "use ive settings" for DNS in the VPN connection profile so the Pulse Secure client adapter gets that address but the local DNS settings are being overwritten as well with the same DNS server IP.

hoofdpijn · ‎04-30-2019

Awesome. Thank you!

hoofdpijn · ‎04-29-2019

Hello, Can anyone explain to me how the FQDN ACL works with split tunneling? I know if you enter an IP address resource and exclude that from the tunnel, the IVE will add routes to the clients route table for those IP resources and use the physical interface of the client. How does it function with an FQDN resource? Does the IVE do a lookup for the listed FQDNs and add the resulting IP addresses to the clients route table or is it doing some kind of intercept live on the traffic destined for the FQDN? I can get my split tunnel to work the way I want using IP address resources to exclude them from being tunneled but I can't seem to get it working when I try using the FQDN of the same systems. Any insight would be greatly appreciated.

Re: split-tunneling with fqdn acl

Re: split-tunneling with fqdn acl

Re: split-tunneling with fqdn acl

split-tunneling with fqdn acl