network-extension mode

The routing mode determines the routes used by the client to send packets. The network extension function supports three types of routing modes: split tunnel, full tunnel, and manual tunnel. The detailed description is as follows:

• In split tunnel mode, the data sent by the client to an Intranet is identified by the system routing table, and then transmitted to a virtual network card for forwarding. The source IP address is a virtual IP address. The data sent to the LAN is forwarded by an actual network card, and its source IP address is an actual IP address. Therefore, the network extension forwards only the data sent to the Intranet. In split tunnel mode, other data that is not sent to the local LAN is also forwarded by a virtual network card.

• In full tunnel mode, the data sent to any resource is delivered to a virtual network card and forwarded to a virtual gateway for processing.

• In manual mode, the administrator must configure a static route to the intranet on the FW (for details, see the configuration of the network-extension manual-route command). The client identifies the data destined for the intranet and uses the vNIC to forward the data.

In the virtual gateway service view, the routing mode of the virtual gateway is configured. In the virtual gateway user group view, the routing mode of the user group is configured. If the routing mode is configured in both the virtual gateway service view and virtual gateway user group view, the routing mode configured in the virtual gateway user group view takes precedence.

By default, the routing mode of network extension is the split tunnel mode in the virtual gateway service view. In the virtual gateway user group view, the routing mode configured in the virtual gateway service view is used.