I have a user using the above client and she cannot browse the internet when she is connected to our network. I know that using the Microsoft VPN client, you can de-select Use default gateway on remote network to avoid having two routes for the internet, but I can't see where to define this in Cisco VPN client.
One is to enable the split tunnelling functionality on the group on the concentrator she is connecting with. All traffic defined on the network list would be tunnelled and those not defined would be going in clear to the net.
Second is that if you want to tunnell everything as it is your Corporate Security Policy to do so. Make sure you have the IP address pool assigned to the client routable in your inside network, up to the firewall that does NAT or filtering as it goes out to the internet. So the client could go out to the internet via your corporate firewall.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...