Thanks for your help .I did try but I cannot browse the internet still .The vpdngroup command does not have the split tunnel feature .The vpngroup command has .Still no luck .One thing to add maybe it helps is that I am using Windows 2k client and not cisco client and the pix is 515E .
You can't do split tunnelling AFAIK with L2TP/IPSec. The IPsec setup simply says "encrypt all L2TP traffic", it doesn't know about the underlying traffic destination. And there's nothing in the L2TP protocol that allows for split tunnelling, since L2TP doesn't build security associations for specific traffic patterns, it's either all or nothing (similar to PPTP).
You may be able to fudge something on the client configuration, but I haven't seen anything that would allow it. You would have to set it up to only encapsulate certain traffic in L2TP, and then simply encrypt all L2TP traffic, but I doubt this can be done. There's certainly no command on the PIX that would do this for you.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...