Is Split Tunneling ACL considered "Interesting" packets?

Is a Split Tunneling ACL considered "interesting" or match packets instead of a permit or deny access-list?
Who is Participating?
RPPreacherConnect With a Mentor Commented:
If split tunneling is enabled, traffic not matching the ACL goes out the original DGW.  If split tunneling is NOT enabled, traffic not matching the ACL is dropped.
katredrumAuthor Commented:
If split tunneling is not enabled, and the ACL does not permit external ip addresses, will the VPN user not be able to access the Internet?

If there was an entry with permit any any, will this then go out of the new DGW?
Yes and yes.  But if you are thinking about forcing VPN users to use the company internet, I'd advise against it.  Depending on your network structure this can get very hairy.
katredrumAuthor Commented:
Thanks for the clarification and recommendation!
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.