I am unaware if there are such clients that can handle SSL VPNs, but with the growing popularity and lower cost of SSL VPN devices I'm sure it's only a matter of time until someone writes one. In the past with IPSEC VPNs you could get around this by using a third party VPN client like shrewsoft or vpnc on linux as they had the ability to ignore security policy. An圜onnect uses a network system extension on macOS 11 (and later), bundled into an application named Cisco An圜onnect Socket Filter. The plan above will not work if your admin is a d**kbag and has denied all access to the local network while the tunnel is up. Then write a local hosts file with the hostnames you want to avoid querying the corporate DNS server about. To be SURE that what you want to do will work, re-number your local LAN to a range that is NOT covered by the routes sent to you by the VPN server/concentrator.
![cisco anyconnect socket filter would like to filter network content cisco anyconnect socket filter would like to filter network content](https://it.ubc.ca/sites/it.ubc.ca/files/myvpn-image002a.png)
(tracreroute to an IP on your local segment that you know does not exist on the corporate LAN) What security policies are put in place by the VPN concentrator? Specifically, does the admin deny access to the local LAN? If so you are screwed. When you connect to your VPN, are your local DNS servers superceded or replaced by the DNS servers you learn via the tunnel DHCP? ('ipconfig -all', interfaces higher in the list take precedence)
![cisco anyconnect socket filter would like to filter network content cisco anyconnect socket filter would like to filter network content](https://www.cisco.com/c/dam/en/us/td/docs/security/vpn_client/anyconnect/anyconnect49/upgrade/AnyConnect_macOS_BigSur_Advisory.docx/_jcr_content/renditions/AnyConnect_macOS_BigSur_Advisory_0.png)
what routes are installed when you connect to the VPN ('route print' on windows) You need to answer a few questions first: I think before you can decide on the best way around this, you need to figure out what the root of the problem is.