To the best of my knowledge, VPN software shows up in the system as virtual network adapters, which seems to be system-wide. I am trying to find a VPN-like solution for enabling connectivity to a remote network which would affect only current user session, but my research shows nothing by far.
More about my case: there are multiple cloud VNets (on Azure) associated with projects. Developers, QA, and other people working on these projects need to access the resources on these VNets. The IT department is not comfortable with giving access from Internet and wants the access to be only from the corporate network, and only for the users who need it based on project needs.
For employees with personal devices working in the corporate network, the solution seems to be VPN with IP address filtering on the destination side (corporate source IPs only).
The problem emerges with remote employees, who use Citrix virtual desktop for the purpose of accessing the corporate network. Establishing a VPN connection from the virtual desktop seems to not work as intended due to either lack of admin permissions on the virtual desktop or affecting the whole Citrix host, and thus giving undesired access to other users logged in on the same Citrix server.
My question in the wording of the first abstract assumes that if "session-wide" VPN solution existed, it would solve the problem. At the same time I might be missing some points, and is open to alternative solutions to my problem. Just to mention one of them, creating a Citrix host per project is being consider but evaluated cumbersome by far, as there are too many projects/remote networks.
To sum up:
- Are there "session-wide" VPN solutions out there? What are they called, so I could Google for specific implementations?
- Are there alternative solutions to our problem?
