Split tunneling

Split tunneling is a

VPN client software application without the benefit of an access control

For example, suppose a user utilizes a

FTP sites, etc.), the connection request goes directly out the gateway provided by the hotel network. However, not every VPN allows split tunneling. Some VPNs with split tunneling include Private Internet Access (PIA), ExpressVPN, Surfshark and NordVPN^[1]

Split tunneling is sometimes categorized based on how it is configured. A split tunnel configured to only tunnel traffic destined to a specific set of destinations is called a split-include tunnel. When configured to accept all traffic except traffic destined to a specific set of destinations, it is called a split-exclude tunnel.[2]^[3]^[4]

Advantages

One advantage of using split tunneling is that it alleviates bottlenecks and conserves bandwidth as Internet traffic does not have to pass through the VPN server.

Another advantage is in the case where a user works at a supplier or partner site and needs access to network resources on both networks. Split tunneling prevents the user from having to continually connect and disconnect.

Disadvantages

A disadvantage is that when split tunneling is enabled, users bypass gateway level security that might be in place within the company infrastructure.

content filtering

is in place, this is something usually controlled at a gateway level, not the client PC.

private addresses

with a split tunnel.

Variants and related technology

Inverse split tunneling

A variant of this split tunneling is called "inverse" split tunneling. By default all

network access control (NAC).^[6]

Dynamic split tunneling

A form of split-tunneling that derives the IP addresses to include/exclude at runtime-based on a list of hostname rules/policies. [Dynamic Split Tunneling] (DST)^[7]

IPv6 dual-stack networking

Internal

IPv4

& IPv6 content can be accessed via site routers.

References

^ Long, Moe (July 22, 2021). "Best VPN for Split Tunneling". Tech Up Your Life. Retrieved October 21, 2021.
^ Jeffery, Eric (June 19, 2020). "VPN Split-Tunneling – To Enable or Not To Enable". Infosecurity Magazine. Retrieved October 19, 2020.
^ Mackie, Kurt (March 26, 2020). "Microsoft Touts Split Tunneling with VPNs To Support Remote Workers -- Redmondmag.com". Redmondmag. Retrieved October 19, 2020.
^ Michael Cooney. "Cisco, others, shine a light on VPN split-tunneling". Network World. Retrieved October 19, 2020.
^ Remote Access VPN and a Twist on the Dangers of Split Tunneling, May 10, 2005, retrieved December 5, 2017
ISBN 9780470073001
.

^ "AnyConnect Split Tunneling (Local Lan Access, Split Tunneling, Static & Dynamic (Domain)". March 24, 2020.

Further reading

Juniper(r) Networks Secure Access SSL VPN Configuration Guide, By Rob Cameron, Neil R. Wyler, 2011,
ISBN 9780080556635
, P. 241

Citrix Access Suite 4 Advanced Concepts: The Official Guide, 2/E, By Steve Kaplan, Andy Jones, 2006,
ISBN 9780071501743
, McGraw-Hill Education

Microsoft Forefront Uag 2010 Administrator's Handbook, By Erez Ben-Ari, Ran Dolev, 2011,
ISBN 9781849681636
, Packt Publishing

Cisco ASA Configuration By Richard Deal, 2009, page 413,
ISBN 9780071622684
, McGraw-Hill Education

External links

Wikimedia Commons has media related to Networking.

Split Tunneling in Linux

v
t
e
Virtual private networking
Communication protocols

DTLS

DirectAccess

EVPN

IPsec

L2F

L2TP

L2TPv3

PPTP

SSTP

Split tunneling

SSL/TLS

(Opportunistic: tcpcrypt)

Connection applications

FreeLAN

FreeS/WAN

Libreswan

n2n

OpenConnect

OpenIKED

Openswan

OpenVPN

Social VPN

SoftEther VPN

strongSwan

tcpcrypt

tinc

VTun

WireGuard

Shadowsocks

Enterprise software

Avast SecureLine VPN

Check Point VPN-1

LogMeIn Hamachi

Risk vectors

Content-control software

Deep content inspection

Deep packet inspection

IP address blocking

Network enumeration

Stateful firewall

TCP reset attack

VPN blocking

VPN Services
Avast

HMA

SecureLine

Kape Technologies

CyberGhost

ExpressVPN

Private Internet Access

Zenmate

McAfee

TunnelBear

Tesonet

NordVPN

NordLayer

Surfshark

Ziff Davis

IPVanish

StrongVPN

Hola

IVPN

Mozilla VPN

Mullvad

PrivadoVPN

Proton VPN

PureVPN

SaferVPN

Windscribe

Retrieved from "https://en.wikipedia.org/w/index.php?title=Split_tunneling&oldid=1219224724"

[1] Long, Moe (July 22, 2021). "Best VPN for Split Tunneling". Tech Up Your Life. Retrieved October 21, 2021.

[2] Jeffery, Eric (June 19, 2020). "VPN Split-Tunneling – To Enable or Not To Enable". Infosecurity Magazine. Retrieved October 19, 2020.

[3] Mackie, Kurt (March 26, 2020). "Microsoft Touts Split Tunneling with VPNs To Support Remote Workers -- Redmondmag.com". Redmondmag. Retrieved October 19, 2020.

[4] Michael Cooney. "Cisco, others, shine a light on VPN split-tunneling". Network World. Retrieved October 19, 2020.

[5] Remote Access VPN and a Twist on the Dangers of Split Tunneling, May 10, 2005, retrieved December 5, 2017

[6] ISBN 9780470073001
.

[7] "AnyConnect Split Tunneling (Local Lan Access, Split Tunneling, Static & Dynamic (Domain)". March 24, 2020.

[1]

[3]

[4]

[6]

[7]