I am not really sure if I am getting split tunneling right. If split tunneling is enable on my PIX for the VPN clients. Then all the traffic from that client site to the public network (internet) will not pass the ipsec tunnel but go thru the clients network right? and if it is disable then the traffic to the internet will pass the tunnel. which means access to internet will be from my pix firewall i.e the client will utilize our bandwidth to surf the network. and will be decrease the throughput.
how this helps......both security and thruput can some 1 explain ...Thanks
You have got the split tunneling right, but with out it users will not beable to browse the internet because the PIX does not allow packets to come in one interface and then go out that same interface.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...