Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Client to site VPN question

I configure a pix 515E ios 6.22, to accept vpn connection from remote user. Any thing seems to work fine, remote user can connect to the LAN and access all server. The little problem is that , as soon as the VPN tunnel is build, the remote user can't surf on the internet. All the traffic is encrypted and sent to the pix. I verify the encryption domain on the vpn client, it is set to 0.0.0.0, normally it should be 192.168.1.0 which the remote LAN behind the pix. So my little question is how to permit VPN connection and web surfing on the same time ? thanls very much for your help

jean-philippe

1 REPLY
New Member

Re: Client to site VPN question

Assuming that you're using Cisco's VPN Client, you should look into 'split-tunnel' as described on:

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_62/config/basclnt.htm

Basically the split-tunnel info that is defined in the vpngroup statements will be pushed from the pix to the client, which will use it to decide what data to encrypt.

Good luck.

Frans

81
Views
0
Helpful
1
Replies