Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

bma
New Member

split-tunnel

Could I use ACL down to port lever on the vpngroup split-tunnel? like

Access list 100 permit tcp host 10.20.0.4 172.17.1.0 255.255.255.0 eq smtp

........

vpngroup mygroup split-tunnel 100

I try it, but not work.

Thanks

ben

2 REPLIES
Cisco Employee

Re: split-tunnel

No it would only work for protocol level and not to port level. You might want to pass an acl to the user to be able to limit their access. You could do this with xauth and using access-list filter on the PIX.

bma
New Member

Re: split-tunnel

Thanks for info. I am using windows 2000 IAS as RADIUS server, could I use it to check access-list?

where can i find microsoft info about it?

ben

224
Views
0
Helpful
2
Replies