dhuff2012
asked on
VPN Split Tunnel Cisco ASA
I have a production ASA which is configured for client vpn. The VPN works; however, when initiated I cannot see my local lan or the internet. I enabled split tunneling through the GUI and was still unable to see my local network.
I have disabled split tunneling and attached a copy of the running config. It is a bit confusing as there are some unsuccessful VPN attempts still in the config.
config.docx
I have disabled split tunneling and attached a copy of the running config. It is a bit confusing as there are some unsuccessful VPN attempts still in the config.
config.docx
Cisco ASA - Enable Split Tunnel for IPSEC / SSLVPN / WEBVPN Clients
Add
vpngroup sscadm1n2 split-tunnel RemoteVPN_splitTunnelAcl
access-list RemoteVPN_splitTunnelAcl permit ip 10.1.1.0 255.255.255.224 any
Should do you
Pete
Add
vpngroup sscadm1n2 split-tunnel RemoteVPN_splitTunnelAcl
access-list RemoteVPN_splitTunnelAcl permit ip 10.1.1.0 255.255.255.224 any
Should do you
Pete
ASKER
Hi Pete:
I put your commands in but they had to be put in reverse order. I've attached the current config. Is this what it should look like? Also, what can I get rid of?
David
config2.docx
I put your commands in but they had to be put in reverse order. I've attached the current config. Is this what it should look like? Also, what can I get rid of?
David
config2.docx
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
access-list outside_access_in permit ip 10.11.12.0 255.255.255.0 10.1.1.0 255.255.255.224
See if it works. Make sure the firewall on PC behind your PIX is configured to allow ICMP.