Location Aware Connectivity

Remote Access Clients intelligently detects whether or not it is inside the VPN domain (Enterprise LAN), and automatically connects or disconnects as required.

When the client is detected within the internal network, the VPN connection is terminated.

If the client is in Always-Connect mode, the VPN connection is established again when the client exits.

Choose a location awareness configuration.

• Interface-topology-based (recommended)

  The location is determined by the Security Gateway interface that received the client connection. If the client connection came from an external interface of the Security Gateway, the client's location is considered to be in the external network. If the client connection came from an internal interface of the Security Gateway, the client's location is considered to be in the internal network. For an interface listed as both external and internal, the location is considered external.

• Specific network considered as internal

  The originating IP of the client connection, as seen from the Security Gateway, is compared to a configured list of internal networks. To use this setting, you must configure the internal networks.

• Domain Controller (DC) connectivity (default but limited)

  The location is based on the availability of the DC on the client network, assuming the DC is accessible only from within the internal network (not externally or through the VPN tunnel).