Routing based on Group Policy

Unanswered Question
Jan 14th, 2010

I'm about to setup a ASA5580 as a VPN concentrator.

As there is no possibility to have VPN's as context, I am wondering if there is a solution for my problem.

We have 3 different user groups (i.e. Students, Staff and Teachers). They should be mapped into separate vrf's.

I can use Group policies in order to give them separate IP addresses and match them into separate vlans.

Is there a way to assign them separate routes?

For Example, Students connect to the VPN concentrator and get a IP 10.1.1.x. Then the default gateway should be

Staff will get a IP 10.2.1.x and the default gateway should be set to

Right now, we're still running 3 separate Cisco3000, one for each usergroup.

If there is a solution without the need for 3 different ASA, I would be very relieved.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion