VPN Default Gateways
NOC Home
     IP Address Rules
     Protocol Rules
     Server Rules
     Domain Names
     Prohibited Software
NOC Policies
     P2P Policy
Network Security
     VPN Help
     Root Certificate
     Certificate Request
Wireless Network
     How To...
     Registration
     Signal Coverage
NOC Tools
     Ping
     Trace Route
     Iperf
NOC Intranet
     Login
     Old site
     IMAP Registration
Secure Site
What is the difference between using the default gateway on the remote network vs. using the local gateway?

When the box labelled Use default gateway on remote network is checked, all of the traffic to and from your pc will be routed through UCF's campus network.  This will subject your Internet communications to the rules applied by UCF's network firewall, preventing access to certain network activities, including some file sharing applications (Gnutella, Kazaa/Morpheus, etc).  However, this setting is required for access to some restricted resources through the UCF Network.  With the default gateway box is unchecked, only traffic destined for the UCF Network will be directed through the VPN connection.

Windows 98 Default Gateway: Windows 2000 Default Gateway:

 

For Windows 98, the default gateway setting is listed under:

  VPN Connection > Properties > Server Types > TCP/IP Settings

For Windows 2000, the default gateway setting is listed under:

  VPN Connection > Properties > Networking > Internet TCP/IP Properties > General > Advanced > General

 

Why should I use the default gateway on the remote network?

bulletAdvantages:
bulletAllows access to address-restricted systems, such as some online Library resources.
bulletProvides access to FIRN resources through UCF address space.

Disadvantages:
bulletAll traffic from your PC to the Internet is routed through UCF's network firewall.
bulletRestricts access to file sharing applications such as Gnutella and Kazaa/Morpheus
bulletIncreases the amount of traffic directed across UCF's connection to the Internet, degrading Internet access speeds for all users.
bulletIncreases the number of "hops" between your PC and Internet sites, resulting in slower speeds while accessing the Internet.
bulletPrevents your PC from acting as a server for other systems connected to the Internet.

Why should I not use the default gateway on the remote network?

bulletAdvantages:
bulletOnly traffic destined for the UCF network is directed over the VPN connection.
bulletAllows your PC to communicate with other systems on the Internet without restrictions from the UCF network firewall.
bulletAll data between your PC and the UCF network is still protected by up to 128-bit encryption.
bulletDisadvantages:
bulletPrevents access to certain address-restricted resources through the UCF network.

 

Graphical Explanations:

VPN Configured with "Use Default Gateway on Remote Network" selected.

Notice in this diagram that all traffic is routed through the UCF Network before it reaches the Internet site you are visiting.  This will slow down the speed of your communication with Internet resources, as well as increase the load and reduce the performance of UCF's Internet connection.

 

VPN Configured with "Use Default Gateway on Remote Network" deselected.

 

In this configuration, only traffic destined for the UCF Network is sent across the VPN Tunnel.  This allows for direct communication with all Internet resources, while still providing encrypted, unrestricted access to the UCF network.

Return to VPN Help page.

 

Home ] Up ] NOC Table Of Contents ]

Send mail to webadmin@noc.ucf.edu with questions or comments about this web site.
Last modified: December 28, 2007