Site to site VPN with split tunnel

Unanswered Question
Mar 27th, 2007

Does anyone know of any config examples for an 837 router > VPN3000 with a split tunnel to the internet ? I checked out where the usual config examples are and could find nothing.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
bthibode Tue, 03/27/2007 - 17:42


On a site to site VPN, split tunneling is almost a given. In your L2L tunnel group on your concentrator, all you have to do is add in the remote network (don't leave it as The remote network will, of course the private side of your router. On your router, in your interesting traffic access-lists, you will specify the router's local network and the network you want your inside users to reach thats behind the concentrator. Oh, and on the concentrator, be sure that the local network section has an exact match of what the access-list on your router says. Thats it, all you ahve to do is define the traffic you want to be tunneled with an interesting traffic access-list on your router and the local and remote networks section on your L2L tunnel group on yoru concentrator and you're all set!

Good Luck



This Discussion