10-23-2008 01:15 AM
Hi,
I have configured Remote Access vpn on ASA 5510. The users can connect to the internal lan.but unable to access the internet simultaneously.
10-23-2008 01:56 AM
Have you enabled split tunneling? Read the below config example:-
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080702999.shtml
Are you encrypting ALL traffic over the VPN? Read the below config example:-
http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a00805734ae.shtml
HTH>
10-23-2008 02:47 AM
yes i have tried to enable the split tunneling in the below order is it correct
group-policy anid-remoteaccessvpn attributes
dns-server value 192.168.30.1
vpn-tunnel-protocol IPSec
split-tunnel-policy tunnelspecified
split-tunnel-network-list value acl_anid-remoteaccessvpn
10-23-2008 02:49 AM
OK - but do the users local DNS server IP address, overlapp with your split-tunnel encryption domains?
10-23-2008 02:55 AM
I dont think so let me verify
10-29-2008 12:15 PM
Can the split tunneling work if my users just use windows pptp to connect instead of the Cisco VPN client?
10-29-2008 03:44 PM
AKAIK - no.
10-29-2008 09:32 PM
Thanks for the urls. now i am able to connect to the internet using client vpn
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide