Remote Access VPN Split Tunnel

ppmhampton
ppmhampton used Ask the Experts™
on
i'm using a cisco pix 506e and i have it setup to do split tunneling on my remote access VPN. When I connect in from anywhere I lose all local lan and internet capabilities.
ASM-PIX-2-.txt
Comment
Watch Question

Do more with

Expert Office
EXPERT OFFICE® is a registered trademark of EXPERTS EXCHANGE®

Commented:
I'm assuming you have defaults. I think by default has the local access disabled on split tunneling and you have to turn it on.

When I encounter this from companies that don't want any back door access, I use simple work around by adding a second network card for local access. The VPN access will not be affected.

Else Try these two links:

Pix 506e

VPN Concentrator

Author

Commented:
neither of those are helping.  I have the lines needed for split tunneling, but its not working.
Technical Consultant
Commented:
access-list RemoteVPN_splitTunnelAcl permit ip 10.10.0.0 255.255.0.0 any
vpngroup RemoteVPN split-tunnel RemoteVPN_splitTunnelAcl

where  10.10.0.0 255.255.0.0 is the network behing the pix and RemoteVPN is your remote group name

Author

Commented:
thank you, that worked!  tested it from remote PCs.
Pete LongTechnical Consultant

Commented:
No probs ThanQ

Do more with

Expert Office
Submit tech questions to Ask the Experts™ at any time to receive solutions, advice, and new ideas from leading industry professionals.

Start 7-Day Free Trial