Although you could play with firewall policies and whatnot to allow only connections to your VPN endpoints while connected to the Internet I would strongly recommend you refer to your VPN vendor as they might have clients settings to allow this without the hussle of handling the config yourself.
Force to connect to corporate VPN
Hello, I manage Active Directory with almost 400 Windows clients.
How can I setup my policy for forcing the users to connect to AnyConnect corporate VPN before use the network?
So all traffic passes on the VPN? And with disconnected VPN the user can't surf the web?
thanks
2 answers
Sort by: Most helpful
-
Pierre Audonnet - MSFT 10,191 Reputation points Microsoft Employee
2022-05-12T14:23:04.517+00:00 -
Limitless Technology 39,736 Reputation points
2022-05-17T07:50:47.09+00:00 Hello
Thank you for your question and reaching out.
I can understand you are having some queries related to VPN connection before using network.This VPN profile setting "Trusted Network Detection" appears to fit the criterion. As a reference, You can read the following article.
When this option is enabled, the device will only establish a VPN connection when it leaves the trusted network.
I hope it becomes useful.
------------------------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept as answer--