If a client computer with the webroot secure dns agent has a vpn service they can circumvent the webroot secure dns settings.
In this case we are working with the Sonicwall netextender which connects to a corporate firewall for access to the HQ LAN.
How do we configure the netextender client and firewall so that web requests from remote sslvpn clients get Webroot Filtering but the client can still resolve HQ LAN resources ?