If I set up a site-to-site VPN using two Cisco routers (one at each site), will users behind either router be able to access the Internet for general usage?
I ask because I know that some devices block all other traffic except traffic going over the VPN tunnel (they disable split-tunneling).
thanks for your kind remarks.
yes what you want to do is possible with each site going to the internet indipendently.
For building a full mesh of VPN links you need to define two GRE tunnels on each device.
The crypto map can have two blocks one for each peer/remote site.
traffic to be encrypted:
GRE between hosts (GRE tunnels source and destination addresses).
you can use one ACL for each peer.
Hope to help