Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Allowing VPN Client access to internet without split tunneling

Hi, I'm trying to setup my pix515E ver. 8.0 to allow access to internet without using split tunnel. I am able to get connected, but unable to do anything else. Any help will be appreciated. I did try the vpn on a stick, but no luck. Also, tried some of the other fixes that worked for others. Config attached.

Thanks in Advance

2 REPLIES
Green

Re: Allowing VPN Client access to internet without split tunneli

Is the only problem the vpn on a stick, or the vpn is not working at all?

You don't need the outside access list for the vpn traffic since you most likely have sysopt connection permit-vpn, which is enabled by default.

Hairpinning configuration looks ok.

Are vpn clients getting a dns server address?

group-policy DCPDS_SOA attributes

dns-server none

New Member

Re: Allowing VPN Client access to internet without split tunneli

Yes, the vpn clients are getting through and getting the test banner, but for some reason when I add the DNS that we use for outside it does not work. THanks.

228
Views
0
Helpful
2
Replies