I asked this question before and thought I had it straight, but having tried the suggested solution it is not working.
Is it possible to allow Cisco VPN clients access to only certain internet IP addresses through split tunneling? I have tried using the split tunnel ACL:
access-list split_tunnel deny host x.x.x.x (internet host x)
access-list split_tunnel deny host y.y.y.y (internet host y)
access-list split_tunnel permit 0.0.0.0 0.0.0.0 (tunnel everything else)
This doesn't appear to work. Is this possible and any other suggestions?