My PIX firewall is VPN headend device. It is located behind C1721 router. I have to customize VPN remote access without splitting tunnel network. It is work OK if I try to connect from VPN client located between PIX and C1721. If I try to connect from external VPN client located before C1721 then it work without access to internal resources. But it work OK if I use possibility of splitting tunnel network. I switched on possibility of Reverse Route Injection. Help to localize a mistake, please. What is wrong?
If you are talking about accessing the Internal LAN behind PIX from the clients, there's no way it will NOT work without split tunnel, if it works with split tunnel.
Could you please paste a n/w diagram and relevant part of PIX and router config.