Closed e-wu closed 5 years ago
Fortinet solution got held up on trial licensing after figuring out how to run a BYOL model through IaaS.
SoftEther with IP based split tunnel is not maintainable. 50 ranges to add just to allow youtube through.
Inverse split tunnel would help, however unable to get it working in SoftEther.
Trying Microsoft Always On VPN (Client side) which allows split tunnel based on domain names and process ID. This requires IKEv2 which SoftEther does not support, so moving to OpenSwan or equivalent.
Can't seem to get the domain name routing to work. Continue investigating. Inverse tunnel was done though.
Findings summarized in reports presentation.
This ticket is used to track findings for easier to reference.