ssl vpn default gateway issue

syjeon · ‎02-01-2008

I have a question about ssl vpn with asa 5520

I enabled the sslvpn on ASA 5520. and I looked the my pc's routing table.

the routinb table like below

Ethernet adapter ë¡œì»¬ ì˜ì— ì—°ê²°:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Broadcom NetLink (TM) Gigabit Ethern

et

Physical Address. . . . . . . . . : 00-11-11-11-aa-bb

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 192.168.1.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . :

DNS Servers . . . . . . . . . . . : 192.168.10.1

Ethernet adapter Cisco AnyConnect VPN Client Connection:

Connection-specific DNS Suffix . :

Description . . . . . . . . . . . : Cisco AnyConnect VPN Virtual Minipor for win

Physical Address. . . . . . . . . : 00-05-9A-3C-7A-00

Dhcp Enabled. . . . . . . . . . . : No

IP Address. . . . . . . . . . . . : 10.36.36.1

Subnet Mask . . . . . . . . . . . : 255.255.255.0

Default Gateway . . . . . . . . . : 10.36.36.2

DNS Servers . . . . . . . . . . . : 10.47.2.10

10.32.0.13

C:\Documents and Settings\admin>

the default gateway is 10.36.36.2, but I would like to config to 10.36.36.1

like pc's ip address and subnet mask 255.255.255. and I want to keep my real gateway!

Is it possible with SSL vpn in ASA 5520?

If possible, Can you give to config to me in cli?

My last purpose is that I want to use vpn network to my job and I enjoy web suffing

in sametime.

I must do to sslvpn.. I used to solve with IPsec client previously

tstanik · ‎02-07-2008

You can not change the default gateway IP to 10.36.36.1 because then your local PC IP address and the default gateway IP address will become the same, which is not allowed . Also this will impact other users if they are also connecting to the office using SSL vpn.

richardowen123 · ‎02-15-2008

configure a split tunnel on the group-policy, client config, general client parameter.

Rich