Episode 39 — Split Tunneling: security and performance tradeoffs in plain language
Split tunneling is frequently tested as a tradeoff decision because it changes where traffic flows and which security controls see it, and this episode explains that decision clearly. It defines split tunneling as allowing some device traffic to go directly to the internet while other traffic traverses the encrypted tunnel to enterprise networks or security services. The first paragraph focuses on why split tunneling is used: it can reduce latency for internet-bound traffic, avoid bottlenecks at centralized gateways, and improve user experience for bandwidth-heavy applications. It also explains why split tunneling increases reliance on endpoint controls and policy discipline, because some traffic bypasses centralized inspection and may be exposed to local threats. The episode highlights the requirement to understand the traffic classes involved and the risk tolerance of the organization before making the choice.
