On Tuesday 31 December 2002 10:18 am, Michael Long wrote:

...

I have gotten both vpn's coexisting nicely with each other. I can now connect to my desktop at work via vnc. It looks like I can now remove my windows partition...YEA!

Now for my final issue. I have not been able to configure my cisco vpn to allow me access to my local lan when connected the vpn is running. This is proving to be most inconvenient because I do have a web server running that is accessable to the outside world. Unfortunately the webserver is unavailable when the vpn is activated. I am thinking that if I add a second nic card to the box and configure it properly that I should be able to have one card handle the webserver traffic and the other card will handle the vpn traffic. Does this seems like a sane configuration? If so can someone point me to documentation that will explain how to accomplish this.

Thanks again, Mike

Hi Mike,

Look for a setting in your configuration that says something about "EXCLUDE_LOCAL_LAN". The possible values are true and false. Toggle it and see if that fixes your problem.

If the webserver in question is running on the machine that is making

Hi Andy, I was hoping that by adding a second nic card that plugs into my router I could somehow configure the webserver to use one nic and the vpn to use the other without the 2 cards knowing about each other. From some of the responses I have gotten it appears that this was naive thinking on my part. Cheers, Mike the VPN

connection, then it will not be visible on the Internet while the VPN is active. That's a feature. When you activate the VPN on your machine, you become part of your company's network, and when you deactivate the VPN, you go "back to normal".

You could add another NIC to handle the web traffic, but you then create a path from one NIC to your machine and out the other NIC to your company's network. Do you really want to create a back door into your company's network that way? This is a security issue to be considered.

Later,

Andy

-- Andy Stewart, Founder Worcester Linux Users' Group Worcester, MA USA http://www.wlug.org

_______________________________________________ Wlug mailing list Wlug@mail.wlug.org http://mail.wlug.org/mailman/listinfo/wlug