How to bypass mandatory VPN tunneling?
How to bypass mandatory VPN tunneling?
The net admin made a mistake with the VPN configuration, now forcing all client traffic through it which causes many problems for remote users. He refuses to adjust it again, believing it resolved drive map issues (it didn't). My approach is to set up a virtual machine and install the VPN software there, then connect remotely via RDP. I’m unsure which method to choose because I’m new to this. I tried Hyper-V but it’s too resource-heavy, so I moved it to my Plex server and added the Plex server to my Hyper-V manager, but that’s very complicated. I spent six hours without making progress, encountering one error after another. The Windows sandbox is good and uses little resources, but it doesn’t save state or reload once set up. I’m considering VMware, though I think it would cost too much. Do you know of a Windows sandbox that doesn’t close when you stop using it? And is there a better way to avoid forced tunneling?
Who oversees this network? You, the administrator, or your supervisor?
You aren't trying to bypass anything.
We all work together to create a plan and setup that benefits the organization.
Is this plex server a company tool or resource?
The admin oversees the network but often disrupts operations. He implements updates without considering their effects on others, and even when the CIO voices concerns, his reply is usually "that's how it is now because [irrelevant reason]." As a newcomer, we're giving him space to make mistakes and learn. Finding a replacement isn't easy, but I doubt he'll stay long given the issues he's causing. Managing him isn't my responsibility, and right now I need to focus on my tasks efficiently.
My advice is to remain out of it. Let the new admin take their time and let them figure things out. Avoid giving him the rope, just in case you get caught up. Don't expose your home plex server to danger—whose fault is it if something goes wrong? You might find yourself facing blame, whether fair or not.
The initial action is to discuss with the Net Admin. Inform him about the disruptions caused by his changes, emphasizing that this mission-critical software is no longer operational. This should prompt a thorough review and help reach a practical resolution between both parties. If this doesn't work, the two of you must convene with the CIO, where each will present their perspective and the CIO will decide the next steps.
That's the expected process.
-Wolf sends
I appreciate the analogies, but I feel I haven't expressed the situation clearly enough. His behavior has increased the complexity of my tasks. He understands it’s causing challenges for remote staff, yet he dismisses the issue as a resolved auto-drive map problem for those already integrated into the system—though that hasn’t been the case.
I’m uncertain about how long it will take before he corrects his error. Until then, I’ll need to be creative and find ways around his changes so I can keep working remotely without conflict or getting drawn into any issues. That’s why I’m choosing to stay out of it.
I’ve set up my Hyper-V VM on the Plex server and it functions properly for this task. I’m not an expert in virtual machines, but since the connection is inside a VM, I don’t worry about ransomware or unauthorized access. Even if it did happen, I have offline and cloud backups in place.
I recognize there’s another potential entry point through the network, but it’s minor compared to other concerns. After our recent ransomware incident, we changed several admin credentials—one of them shifted from admin/administrator to admin/rotartsinimda, which was noted on a whiteboard by the IT manager because he keeps misremembering what “administrator” spells backward. Security here seems lax, so I’m open to taking some risk and accepting responsibility if it helps my work.
Ideally, this would resolve the issue, but about a dozen remote team members have already reported problems with his changes and are refusing to admit they fixed anything and instead blame me for any complications. Unfortunately, someone on helpdesk identified the drive map problem today and resolved it (completed the net admin’s task), so the IT manager is likely to credit this change and direct others to handle it.
Bringing this up with the CIO would be a last resort—a direct accusation of incompetence. I believe that should be addressed, but it isn’t something I’m responsible for handling. I’d rather avoid workplace drama.
Wow, slow down. Are you referring to your personal device or your company's system? Where is this taking place? Are you working from your office or doing a remote job from home? Only if you're at home using your private computer, it might be feasible to run your work environment in a VM. In all other situations - DON'T! This could lead to worse outcomes, including potential termination.
It's a personal computer. We're allowed to use personal equipment. My tasks need a VPN client to connect to the work network, and recently updating the program made all client traffic go through the VPN, causing many issues. Any suggestions that could be better than running a full virtual machine? It feels like isolating a powerful VPN client is unnecessary.
I agree with @Wolfshadw.
Consult the Net Admin initially.
After that, you and other remote workers should begin recording information: events, issues, outcomes, timestamps, dates, etc.
Maintain everything as factual and professional.
Include all details, documents, emails, etc.
When escalating to the CIO, you'll have more than just accusations.
And remember -
remain entirely out of it regarding any activity that could be seen as performing the Net admin's role.
Or attempting to bypass him and his responsibilities in any way.
We've already discussed this with several remote employees. I've been keeping detailed records for months, but as I mentioned before, management is allowing him a lot of time to make errors and learn. However, I won't be handling anything directly to the CIO myself since it's not my responsibility.
I have no choice but to find ways around him. Just like if your car tires were replaced with granite cubes—something that really slows you down—I wouldn’t try to drive on them. I’ll look for other methods to reach the same outcome. Ideally, I’d revert the change, but since that’s not an option for me, I’m opting to use an alternative service (an uber in this case) to bypass his decision.
Most people say my comparisons aren’t helpful, but I think this one was okay.
I’m not breaking any rules, it’s just difficult to figure out what to do. The only suggestion I have is using a virtual machine, though I think that might be too much. I’m still looking for other solutions. Everyone says it’s a bad idea, but they probably don’t understand the situation well enough. So can we stop talking about “I don’t think you should do that”?