Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Separate VPN traffic on ASA

Hi,

I'm hoping someone can help.  I'm trying to see if there is a way on the ASA (non-CX) to separate the SSLVPN traffic from the rest of the firewall traffic.  Both sets of traffic would ultimately go to the same switch, but I was hoping I could split them into different VLANs or more specifically different internal ports.  I'm implementing ISE (IPEP) inline and would like to not have non-VPN traffic flow through the ipep device. 

I know PBR and source-based routing are not supported (at least I didn't think they were), but was hoping there was an obscure solution that I may be missing.

Thanks,

Mike

Everyone's tags (4)
1 REPLY
Hall of Fame Super Silver

Separate VPN traffic on ASA

I think for now you'll have to push it all through your IPEP.

Rumor is that CoA will be natvely in ASA 9.2, so that will provide relief in the longer term.

200
Views
0
Helpful
1
Replies