VMware Communities
jtalics
Contributor
Contributor
‎07-30-2022 09:50 AM

Want NAT or Bridged but not both

I have a functional Ubuntu 20 guest on Windows 10 running VMware Workstation 16 Player (16.2.4 build-20089737) working from home.  If I use a bridged network adapter, I can connect to the web and visit google.com from the guest Ubuntu.  But I cannot ping or connect to any of my company's network systems that is a Cisco AnyConnect VPN, unless I turn off the bridged adapter and turn on the the NAT adapter.  But then I can not connect/ping google.com.  Needless to say, this is very cumbersome.  How can I set up Player so that a single network adapter can ping both google.com AND my company boxes without switching adapters (Player->Manage->Virtual Machine Settings-> Network Adapter)  Thank you for reading.

0 Kudos
1 Reply
bluefirestorm
Champion
Champion
‎07-31-2022 12:03 AM

It is not clear from your post where the VPN client software is running (on the host or VM?) Assuming the VPN client is running on the host, that probably explains why the VM needs to switch to NAT as the bridged settings of the VM would have nothing set for VPN access while the NAT would route through the host VPN.

As for access to Google (or any site outside of company intranet), you have to ask the VPN/IT admins whether access outside of the company intranet are routed by the VPN. Some company VPNs are set up exclusively for intranet or only partially to public internet for certain sites. This might be due to IT security reasons or for cost/bandwidth reasons (it does not want to route an employee/contractor streaming movies) or for both. Anyway, the loss of access to Google while on VPN may not have anything to do with VMware Workstation.

There is nothing stopping you from adding another virtual NIC that has bridged while the other has NAT. But that brings along routing issues as well with a multi-homed machine. Even if you get multi-NICs to work, you might be violating IT policy of the company. It is best to ask your VPN/IT admins. It is probably not worth getting a reprimand or something worse if you are found to be violating company IT policy (having a machine whether physical or virtual that can serve as a bridge for traffic from possible harmful public internet sites into company intranet).

 

0 Kudos