PaulDotCom mailing list archives
Re: VPN Split DNS
From: Herndon Elliott <alabamatoy () gmail com>
Date: Tue, 5 Mar 2013 06:52:48 -0600
Subject: [Pauldotcom] VPN Split DNS Message-ID: CANMo1R4=
P-sB22d71opr4uZ4CZT5pKi3EBpzJduK8RvZ2-UmCQ () mail gmail com
We have some branch offices that connect to a client VPN in our datacenter to access certain resources. Currently we are sending all traffic through the VPN when they connect, but this keeps them from being able to access resources on their network. What are the security concerns of using split DNS to allow them to access
Split DNS = split tunneling, I think you mean. Simple question: does the "datacenter" network want to trust the entire remote network? If so, go for split tunneling. If there is anything on the remote network that you dont want to trust, disallow split tunneling. My experience is split tunneling is very, very high-risk for the target of the VPN. Herndon Elliott Madison, Al https://keyserver.pgp.com key ID: 24B60B6150130832 ΜΟΛΩΝ ΛΑΒΕ "molon labe"
_______________________________________________ Pauldotcom mailing list Pauldotcom () mail pauldotcom com http://mail.pauldotcom.com/cgi-bin/mailman/listinfo/pauldotcom Main Web Site: http://pauldotcom.com
Current thread:
- VPN Split DNS Matthew Perry (Mar 04)
- Re: VPN Split DNS Andrew Johnson (Mar 04)
- Re: VPN Split DNS Chris Campbell (Mar 05)
- Re: VPN Split DNS subodh pachghare (Mar 04)
- <Possible follow-ups>
- Re: VPN Split DNS Herndon Elliott (Mar 05)
- Re: VPN Split DNS Colin Edwards (Mar 05)
- Re: VPN Split DNS Matthew Perry (Mar 05)
- Re: VPN Split DNS wynn (Mar 05)
- Re: VPN Split DNS Colin Edwards (Mar 05)
- Re: VPN Split DNS Andrew Johnson (Mar 04)