I am configuring an SSL and IPSec VPN where I would like to tunnel all traffic except for traffic going to 10.0.0.0/16.
For the group policy I set the policy to "Exclude Network List Below", and then specified a network list which has a permit 10.0.0.0/16 statement (I have also tried making this deny).
At that point I connect to the VPN and it shows that it is "Mode: All Traffic". When I go to the route detail tab it shows a 0.0.0.0/0.0.0.0 for Secured Routes, but nothing under the Non-Secured Routes.
I've tried configuring it again from scratch, and making sure the Connection Profiles are using the correct group policy. I verified this buy changing it to split tunnel, and at that point when I connect it sets the correct network under "Secured Routes".