> > > "It depends" is normally the answer - if you are particularly paranoid
> > > then the VPN is set to only allow vpn traffic in (the theory AIUI being
> > > that if someone had hijacked your PC then at least they can't hack
> > > "live" on the box (unless the VPN also allows the traffic).
> >
> > The OS is XP. Once logged into the VPN _everything_ goes through the
> > VPN. Can't even access my router.
>
> Oooh... yes, I remember using PPTP under XP and wondering how to set it
> up to only route a particular subnet (something/16) over the tunnel and
> keep the default route to my own router. Trivial under Linux etc. with
> route or pptpconfig, but I gave up
>
> It's odd that you can't contact your router (in fact I'm kinda reneging
> on my previous e-mail here since normally only the default route gets
> mucked up, the interface's local subnet route shouldn't change); isn't
> this necessary for the tunnel to work at all? What do you get when the
> VPN is up and you run "route PRINT" from a cmd box?
>
===========================================================================
Interface List
0x1 ........................... MS TCP Loopback interface
0x2 ...00 12 f0 e7 15 20 ...... Intel(R) PRO/Wireless 2915ABG Network Connection
- Packet Scheduler Miniport
0x3 ...00 1a 6b 68 31 eb ...... Broadcom NetXtreme Gigabit Ethernet - Packet Sch
eduler Miniport
0x10005 ...00 ff 08 10 a1 86 ...... ************* Virtual Adapter
===========================================================================
===========================================================================
Active Routes:
Network Destination Netmask Gateway Interface Metric
0.0.0.0 0.0.0.0 172.16.0.1 172.16.0.11 25
10.0.5.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.8.0.0 255.255.0.0 10.72.254.60 10.72.254.60 1
10.9.254.0 255.255.255.224 10.72.254.60 10.72.254.60 1
10.9.254.32 255.255.255.224 10.72.254.60 10.72.254.60 1
10.10.48.0 255.255.240.0 10.72.254.60 10.72.254.60 1
10.10.128.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.10.160.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.10.200.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.10.246.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.10.248.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.10.249.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.10.250.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.10.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.11.252.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.19.250.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.19.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.20.240.0 255.255.240.0 10.72.254.60 10.72.254.60 1
10.22.252.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.36.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.39.240.0 255.255.240.0 10.72.254.60 10.72.254.60 1
10.40.252.0 255.255.255.0 10.72.254.60 10.72.254.60 1
10.44.252.0 255.255.252.0 10.72.254.60 10.72.254.60 1
10.46.224.0 255.255.224.0 10.72.254.60 10.72.254.60 1
10.52.248.0 255.255.248.0 10.72.254.60 10.72.254.60 1
10.53.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.55.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.56.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.57.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.58.192.0 255.255.192.0 10.72.254.60 10.72.254.60 1
10.59.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.60.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.72.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.72.254.60 255.255.255.255 127.0.0.1 127.0.0.1 10
10.73.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.77.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.78.254.0 255.255.254.0 10.72.254.60 10.72.254.60 1
10.255.255.255 255.255.255.255 10.72.254.60 10.72.254.60 10
127.0.0.0 255.0.0.0 127.0.0.1 127.0.0.1 1
169.254.0.0 255.255.0.0 172.16.0.11 172.16.0.11 30
172.16.0.0 255.255.255.0 172.16.0.11 172.16.0.11 25
172.16.0.0 255.255.255.0 10.72.254.60 10.72.254.60 1
172.16.0.0 255.240.0.0 10.72.254.60 10.72.254.60 1
172.16.0.11 255.255.255.255 127.0.0.1 127.0.0.1 25
172.16.255.255 255.255.255.255 172.16.0.11 172.16.0.11 25
192.168.27.0 255.255.255.0 10.72.254.60 10.72.254.60 1
192.168.29.0 255.255.255.0 10.72.254.60 10.72.254.60 1
192.168.31.0 255.255.255.0 10.72.254.60 10.72.254.60 1
192.168.71.0 255.255.255.0 10.72.254.60 10.72.254.60 1
192.168.72.0 255.255.254.0 10.72.254.60 10.72.254.60 1
192.168.90.0 255.255.255.0 10.72.254.60 10.72.254.60 1
192.168.91.0 255.255.255.0 10.72.254.60 10.72.254.60 1
195.127.230.3 255.255.255.255 172.16.0.1 172.16.0.11 1
224.0.0.0 240.0.0.0 10.72.254.60 10.72.254.60 10
224.0.0.0 240.0.0.0 172.16.0.11 172.16.0.11 25
255.255.255.255 255.255.255.255 10.72.254.60 3 1
255.255.255.255 255.255.255.255 10.72.254.60 10.72.254.60 1
255.255.255.255 255.255.255.255 172.16.0.11 172.16.0.11 1
Default Gateway: 172.16.0.1
===========================================================================
Persistent Routes:
None
> > > Could hot swap with USB port if it's not too fiddly. You can get
> > > USB->parallel converters. In fact I have one somewhere I used to use
> > > if you want it.
> >
> > Ideally I want something that needs no interuption or user input, so
> > the wife can print from her laptop, and I can print from mine (from
> > within the VPN).
>
> Another possible work-around for this is to set up a Linux/BSD box as
> the VPN client and use it as a gateway with NAT (e.g., use DHCP to
> configure your XP notebook's routing tables to use this machine as a
> gateway for the VPN destination network, and then SNAT or MASQ at the
> gateway).
Not sure if that would work as the VPN client does a host detect, and
if the answer is wrong it will not offer a connection. We're not going
down the route of installing another PC either!
