Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Split Tunneling / Personal Firewall Conflict!

I have configured a PIX 515E to purely serve as a VPN concentrator for remote users to connect to our LAN. Most of the remote users have some sort of personal firewall on their laptops such as PGP or ZoneAlarm. Once these Personal firwalls are properly configured, they can easily connect and access the LAN via the VPN. However, as soon as I enable split tunneling on the PIX (serving as VPN concentrator), they can successfully authenticate, but not access the network anymore. They can no longer ping or map drive to the internal servers anymore. Any idea?

Thanks in advance.


Re: Split Tunneling / Personal Firewall Conflict!

Hi there,

Do you see any encrypts on the clients? if you do, make sure that you do see those decrypts on the concentrator ( sh cry ip sa ).

If you are seeing decrypts on the pix, then make sure that your pix is also encrypting the traffic ( sh cry ip sa ) and if this is true as well, make sure that your client is decrypting that

Hope that helps to narrow down the problem


CreatePlease login to create content