when you use 3.6.4 vpn client, and click on status/secured routes, there is couple of fields i do not understand...
there's src port, dst port and protocol, now as i understand this this is the split tunnel information the vpn client gathers from the pix (or whatever). now i wanted to implement split tunnels that specify tcp or udp ports to make things more restrictive. if this is not the way the 'vpn-group bbb split tunnel acl' command is supposed to be used...then why does this tab show fields that are never going to be populated.
what i was trying to achieve through through split tunnel is that once a user has signed in via ipsec, he/she can only access is tcp port 80 on a local server behind the firewall?
is there anyway this can be achieved through split-tunneling?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...