Block internet access unless through VPN

September 22, 2010 at 13:01:09
Specs: Windows XP
Here's my situation:

1. I am VPNing in to a remote server at my office (using openVPN & their access gateway product, works amazingly).
2. I can't inter-mingle the use of public IP addresses on the internet, it needs to ALWAYS be the office IP.

So what is happening is I have virtualbox running at home, nice little windows xp vm that I have built. I boot er up, connect to vpn and bam I've got the office IP I want rather than the stinky home IP address. I need to roll this out to a couple other people and I don't trust their diligence at connecting to vpn before using firefox/chrome/ie. They may forget and then we'll be back to square one with their personal computer ip address and it was all for not.

SO, I need a way to restrict the VM's network adapter that is providing that access to the local (non-vpn/office) internet to only allow the traffic over the ONE (or just not http/80) port for VPNing.

How the hell can I do this with confidence?

Also, there are other applications that we are using that it is important that they rep the public facing ip of the office network (obtained by VPNing). I would prefer not to use the proxy settings of any apps, just restrict by windows firewall, adapter settings.. I don't know, that's why I'm here.

Thank you for all your help, this place seems like an awesome community that's providing a tremendous amount of support.

See More: Block internet access unless through VPN

Report •

September 22, 2010 at 22:32:58
So I actually figured this out, and it's amazing.

Adapter -> Properties - > TCP/IP -> Properties -> Click Advanced

Choose the Other tab and then block all ports accept your OpenVPN ports on the main WAN adapter.

That way you connect through those ports, on the VPN, then route all your regular traffic through those holes.. it's beautiful.

Report •
Related Solutions

Ask Question