Windows 7 user connects to VPN. RDP to Windows XP desktop works fine. But local IE browsing on Windows 7 PC goes throught VPN and some content blocked by our corporate filewall. Is there any way to use VPN only for RDP, but local network for all other applications? thanks -John

Hi, take a look at these links they can help you: http://serverfault.com/questions/279475/how-can-i-enable-rdp-over-vpn-only http://www.computing.net/answers/networking/port-forwarding-for-remote-desktop/31005.htmlOussama Oueslati | System Engineer | vNext Consulting

Hi, First I want to know how Windows 7 user connects to this VPN? Such as a software VPN or hardware VPN? How you establish this VPN? As a workaround, I suggest that you may try to change the route table to achieve your purpose if you use Windows built-in tool to connect this VPN. For example, my local IP configuration: IPv4 Address. . . . . . . . . . . : 192.168.1.100 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 192.168.1.1 My VPN IP configuration: IPv4 Address. . . . . . . . . . . : 172.16.0.100 Subnet Mask . . . . . . . . . . . : 255.255.255.0 Default Gateway . . . . . . . . . : 172.16.0.100 And the subnet of your corporate is 10.1.10.XXX, subnet mask is 255.255.255.0 If you didn’t connect to the VPN, the default route should be: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 xx If you success to connect to VPN, your default route could be changed, such as: Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 172.16.0.100 172.16.0.100 xx Or Network Destination Netmask Gateway Interface Metric 0.0.0.0 0.0.0.0 192.168.1.1 192.168.1.100 2 0.0.0.0 0.0.0.0 172.16.0.100 172.16.0.100 1 This means all network access would go through VPN. You should delete the default and try to rebuilt it: Route delete 0.0.0.0 Route add 0.0.0.0 mask 0.0.0.0 192.168.1.1 Route add 10.1.10.0 mask 255.255.255.0 172.16.0.100 You could create a batch file then the users could launch it once the VPN connection established. Please remember to click “Mark as Answer” on the post that helps you, and to click “Unmark as Answer” if a marked post does not actually answer your question. This can be beneficial to other community members reading the thread. ”

RDP connections are already encrypted. They use, by default, a self signed certificate to encrypt the channel. While adding a second layer of encryption may make your security people happy all it will do is reduce your data throughput. Set your RDP connection security, through the System CP applet, to "Allow connection only from computers running Remote Desktop with Network Level Authentication (more secure)" and you're set.