Hi to all,
I have configured a remote access VPN with NCP client on a SRX345. It's working fine, from the remote client I can access the internal network through VPN access, but all the traffic is being encrypted ... Is there any way to make a tunnel divided ?
I mean, Internet traffic goes directly from the client to anywhere and only traffic to internal networks is encrypted.
Thanks in advance!!
Split tunnelling is controlled by the NCP profile and Traffic Selectors on the SRX.
Though I couldnt find any SRX specific doc, screenshots at https://kb.juniper.net/InfoCenter/index?page=content&id=KB17364
The screenshots are probably from an older version of NCP, but should provide an idea on how to get it done.
Thanks for the information... I've tested and works properly... But, Is there any way to force the split tunneling from the SRX configuration???
You are Welcome!
I don't think it can be done with NCP. You may be able to do it with Pulse though (https://www.juniper.net/documentation/en_US/junos/topics/topic-map/security-dynamic-vpns-with-pulse-secure-clients.html)
Just in case your primary query is answered, please mark this thread as resolved.
It might help others with a similar query.