I'm about to setup a ASA5580 as a VPN concentrator.
As there is no possibility to have VPN's as context, I am wondering if there is a solution for my problem.
We have 3 different user groups (i.e. Students, Staff and Teachers). They should be mapped into separate vrf's.
I can use Group policies in order to give them separate IP addresses and match them into separate vlans.
Is there a way to assign them separate routes?
For Example, Students connect to the VPN concentrator and get a IP 10.1.1.x. Then the default gateway should be 10.1.1.1.
Staff will get a IP 10.2.1.x and the default gateway should be set to 10.2.1.1.
Right now, we're still running 3 separate Cisco3000, one for each usergroup.
If there is a solution without the need for 3 different ASA, I would be very relieved.