Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
521
Views
0
Helpful
1
Replies

Downloadable ACLs for VPN split-tunneling

jose.couto
Level 1
Level 1

‎10-21-2005 01:08 AM - edited ‎03-10-2019 02:20 PM

Hello.

We know about the ipsec:inacl attribute for configuring split-tunneling for a VPN group, but AFAWK you must define the ACL in the local configuration of the router. Is it possible to define the ACL in the RADIUS server instead? How? By the way, is it possible to do the same for the IPsec pools?

Thank you beforehand.

Labels:
0 Helpful
1 Reply 1

smahbub
Level 6
Level 6

‎10-26-2005 10:50 AM

The following steps to be followed for spit tunnelling

Set the split tunneling policy to only tunnel networks in the list.

Configure network lists and default domain names in the Common Client Parameters section of this screen.

Change the default setting on the client PC's Internet Protocol (TCP/IP) Properties window. Go to Control Panel > Network Connections > VPN > VPN Properties > Networking > Internet Protocol (TCP/IP) > Select Properties > Internet Protocol (TCP/IP) Properties window. Select Advanced and uncheck the box.

Note: If you enable both split tunneling and individual user authentication for a VPN 3002 Hardware Client, you must authenticate only when sending traffic bound for destinations on the other side of the IPSec tunnel.

0 Helpful
Customers Also Viewed These Support Documents