This website uses Cookies. By clicking Accept, you agree to the storing of cookies on your device to enhance your community experience. Read our Privacy Policy.
Click Preferences to customize your cookie settings.
Accept
Reject
Preferences

Global Protect 3.1.1 PAN-OS 7.1.5 split tunneling issue

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Global Protect 3.1.1 PAN-OS 7.1.5 split tunneling issue

Go to solution
TranceforLife
L6 Presenter

‎05-09-2017 01:52 AM

Another one,

 

Split Tunneling simply doesn't work:

 

Split Tunnel.PNG

 

When trying to access resources on the Internet (google.com) all traffic is routed to the tunnel where no policy for the Internet access, hence no internet.

0 Likes Likes
1 accepted solution

Accepted Solutions

Go to solution
fjwcash
L4 Transporter

‎05-12-2017 01:08 PM

What's your client OS?

 

Android doesn't support split-tunnelling.

iOS sometimes supports split-tunnelling, but requires some manual twiddling of networking options on the device.

Windows works great with split-tunneling, although we've only tested 7 Pro.

Supposedly MacOS X supports split-tunneling, but we haven't tested it.

 

IOW, if you're not using Windows on the client, split-tunneling won't work.  It's a routing issue on the client, not a GlobalProtect issue.

 

Cheers,

Freddie

View solution in original post

2 REPLIES 2

Go to solution
fjwcash
L4 Transporter

‎05-12-2017 01:08 PM

What's your client OS?

 

Android doesn't support split-tunnelling.

iOS sometimes supports split-tunnelling, but requires some manual twiddling of networking options on the device.

Windows works great with split-tunneling, although we've only tested 7 Pro.

Supposedly MacOS X supports split-tunneling, but we haven't tested it.

 

IOW, if you're not using Windows on the client, split-tunneling won't work.  It's a routing issue on the client, not a GlobalProtect issue.

 

Cheers,

Freddie

Go to solution
TranceforLife
L6 Presenter
In response to fjwcash

‎05-12-2017 02:01 PM - edited ‎05-12-2017 02:05 PM

@fjwcash thanks for your feedback

 

Got some updates but was busy and was not able to post here:

 

The issue is only on the mobile devices and the native Linux VPNC. Windows clients are working fine (initially was some misconfiguration). l have found a quite nice article (FYI) . See below:

 

https://live.paloaltonetworks.com/t5/Configuration-Articles/Split-Tunneling-for-VPNC-Client-on-Linux...

 

So as you have already mentioned manual static routing is required in order for split tunnelling to work on non-native  VPN clients.

 

"Good" to know that split-tunneling is not supported on the Android.

 

Thanks,

Myky

0 Likes Likes
  • 1 accepted solution
  • 1731 Views
  • 2 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!

LEGAL NOTICES
RESOURCES
Khoros awards 2022
Copyright 2007 - 2024 - Palo Alto Networks