i'm doing ios router terminating vpn client.
when defining split tuneling in acl, does it support to include port when defining traffic to be encrypted?
i.e. access-list 100 permit ip <src> <mask> <dst> <msk> eq http
if not, is there option to say this group user can access this host for email only? Should this be done on Radius server or the application?