Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

split-tunnel-policy tunnelall <Internet + VPN Tunnel Access> ?

Hi,

I Configured IPSec Remote Access.Now I want to send my all traffic using tunnelall. If I do tunnelall then I can access VPN Tunnel (L2L from ASA01-ASA02) but no Internet.

To Access Internet I did below solution (But It stopped VPN Tunnel Access):

global (outside) 1 172.18.124.166

nat (outside) 1 192.168.10.0 255.255.255.0

nat (INSIDE) 0 access-list INSIDE_NAT0

192.168.10.0/24 is DHCP Pool defined for Remote Access

access-list INSIDE_NAT0 defines NAT Exemption rules for l2l VPN Tunnel.

What is missing here to Access Internet and VPN Tunnel.

1 REPLY
New Member

split-tunnel-policy tunnelall <Internet + VPN Tunnel Access> ?

Well I have Got the answer from Cisco Support.

one OUTSIDE_NAT0 ACL was required from DHCP Pool to Tunnel LAN

and one nat (OUTSIDE) 0 Statement,

nat (OUTSIDE) 0 access-list OUTSIDE_NAT0

Thanks

Pushpendra         

974
Views
0
Helpful
1
Replies
CreatePlease to create content