VPN clients who want concurrent access to intranet and Internet

For VPN clients who want concurrent access to intranet and Internet resources when the VPN connection is active, you can do one of the following:

  • Select the Use default gateway on remote network check box (the default setting) and allow Internet access through the organization intranet. Internet traffic between the VPN client and Internet hosts would pass though firewalls or proxy servers as if the VPN client is physically connected to the organization intranet. While there is an impact on performance, this method allows Internet access to be filtered and monitored according to the organization's network policies while the VPN client is connected to the organization network.
  • If the addressing within your intranet is based on a single class-based network ID, clear the Use default gateway on remote network check box. The best example is when your intranet is using the private IP address space 10.0.0.0/8.