I've noticed that too - though I dont think the search domain has anything to do with it.  
We need an option that says only send traffic related to this host or network, which sets a 
specific host or network route.

I would like to plead for adding an option that keeps the current behaviour. At my 
university, we must connect to the internet through an open wifi and a PPTP VPN over 
that. It requires all internet traffic to go through the VPN.

I agree with comment 2, but keep in mind  issue 4370 :

 Issue 4370 :	Ability to add specific DNS servers and routes to PPTP or VPN 
connections

IMHO, It makes sense to make "All internet traffic sent through VPN/PPTP" a check box 
option that just enables or disables a default route of the VPN or PPTP connection.

WRT 4370, it would just add the ability to add more static routes and dns servers to 
the connection.

(No comment was entered for this change.)

The behavior of dns failure may be being caused by the vpn failing due to the
following issue:
https://code.google.com/p/android/issues/detail?id=4706
(VPN session failure with MPPE-128 encryption enabled)

I have experienced this issue on a Verizon Motorola Droid running 2.0

I moved my comments to https://code.google.com/p/android/issues/detail?id=5187

Split tunnel would be a good feature to have. Avoid running traffic through corporate
VPN if not destined for the corporate LAN.

What would be really useful would be an option like this:


[ ] Only route these networks using vpn:
    |-----------------------------------|
    |                                   |
    |-----------------------------------|
     [add network] [remove network]

Bonus points if it's selectable per VPN, so that I can be connected to multiple VPNs
each routing to their own respective networks.

Of course  issue 4706  needs to be fixed first before any of this is helpful.

This is extremely important for me. The ability to either (manually) change the 
routing tables or using the VPN setup to specify ip address ranges would be totally 
brilliant. Any ideas if this is going to be implemented? or how one could do it 
themselves with root access?

Is there any chance this made it into 2.2?

Zip!!! The current release of 2.2 still have this issue.
Really sucks that no one care to fix this simple thing.

Pretty much makes the VPN useless

Submitted 2 patches for review to support split-tunneling in VPN services:
https://review.source.android.com/#change,15623
https://review.source.android.com/#change,15624

No much progress in getting them approved so far.

Thanks!

CyanogenMod CM6 nightly build has the fix for it. I tested it and I can have VPN and Internet connections.

Thank you tienhn. Could you point me to a specific commit or announcement where the feature was fixed? 

I use the pre-build binary here: http://mirror.kanged.net/cm/nightly/passion/
And I certain that I can connect to my office VPN using PPTP and at the same time connect to the Internet. Whereas I could not before.
I believe CM github is here: http://github.com/CyanogenMod

Today I can positively confirm that with CM6.1 RC1 version, I can surf the net and connected to VPN hosts simultaneously.
Hope to see this issue fixed in the next OTA of Android.

This can easily be fixed be allowing remote root access to the phone. simple as that.

oh, and enabling tun driver in the kernel wouldn't hurt either.

with root access advanced users can stop opening every single bug here for network and just edit their hosts files, bring up ssh tunnels, etc.

Completely true: i posted the exact same issue "send all traffic"

That's a boolean option available in iPhone 4 which allows VPN to send through all traffic, rather then letting the device automatically mapping which packet was for which port (or something like that)

Android's nearest update needs this. I can't believe that android developers would not think of this when EVERY vpn settings i've ever seen (windows xp (SP3), vista, 7, OSX, iOS) offers a holistic VPN setting dialog

I have a similiar problem with the L2TP/IPSec VPN.
I can connect through the VPN and access the PCs there, e.g. tried a VNC connection.

However, after I do so, I am not able to use internet on the phone.
I guess everything is going through the VPN, however, the VPN network should actually allow internet, so it is a bit strange (I am also asking the router manufacturer now too)

As I want to use the VPN to connect to the internal mail server this is really annoying.

Is there a fix by installing an additional App or something like this?

<a href="http://www.ralphlaurengroup.com/">Ralph Lauren</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren polos</a>
<a href="http://www.ralphlaurengroup.com/">polo Ralph Lauren</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren jackets</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren hoody</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren handbags</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren boots</a>
<a href="http://www.ralphlaurengroup.com/">long sleeve polos</a>
<a href="http://www.ralphlaurengroup.com/">Ralph Lauren rugbys</a>

the issues here is due to many of the vpn servers/concentrators running and forcing the passing of traffic on there end  overwriteing anything on the client end as a security feature http://www.cisco.com/en/US/products/hw/vpndevc/ps2284/products_qanda_item09186a0080094cf4.shtml#other look at split tunneling.

I have an issue simmilar to this but different. I use a cable modem gateway that supports VPN connections - but it seems to have a bug in that it provides invalid DNS servers to the client. I have proven by using the root SetDNS app in the market that this is my only issue with the VPN - if I manually override the DNS servers every time I connect, the VPN works fine.

Is there anywehere in android i can set something so that the VPN support *DOES NOT* override the DNS server?

bump

This issue has been addressed in Ice Cream Sandwich (tested on a Galaxy Nexus). Now, when configuring a VPN you can specify the subnets (CIDR format) to forward over the VPN. Anything that doesn't match these forwarding routes is not sent over the VPN. It's a decent workaround.

Awesome! Thanks for the heads up! Should this be closed/resolved?

I think it probably should be, as this change does solve the issue I opened this for originally, but I don't have the ability to do that. Someone from Google will need to.

So I must buy a new phone to fix this short coming? 
:)

or get/make a build of ics aosp ported to your phone.

I like the idea to only route local VPN addresses.  You could also masquerade or add a route on your VPN server router.

Yes, this is in ICS. :)

It seems that even with this new feature, any proxy server that may have been set in wifi advanced options is bypassed for all traffic.