We monitor internal users http traffic using a product called Surfcontrol Web Filter - SCWF. This SCWF server sits on a VLAN (Cisco 3750) which also has the inside interface of the ASA and we mirror the traffic seen on the inside port to the SCWF port. It all works well.
Now the problem I have. I have just set up the remote VPN feature on the ASA and everything works along with the Internet. However the internet for the VPN users don't come inside and via this SCFW server to be monitored, instead the traffic goes back out to the outside interface.
So I though I could use the tunnel default gateway "0.0.0.0 0.0.0.0 <ip gateway> tunneled"
Am I on the right lines using this because I have tried point it to several devices inside and they no longer get internet access.
I'm just trying to treat the VPN internet access like the internal users so they get monitored.
Thanks in advance for your help.