I have cisco 7200 run Cisco IOS Software, 7200 Software (C7200-ADVENTERPRISEK9-M), Version 12.4(24)T2, RELEASE SOFTWARE (fc2).I want whoever connects to the pptp VPN to be able to access the internet at the same time. I believe that this can be achieved by implementing split tunnel VPN. However I can not figure out how to implement this on my 7200. All the documentations that I have found only say how to do this on a cisco ASA.I have been looking at this article to help me http://www.cisco.com/en/US/tech/tk59/technologies_configuration_example09186a00800a393b.shtml#con4the VPN clients will be assigned an ip address in the range 172.16.10.0/24 to access the remote network fo 126.96.36.199/24Looking at the article posted above i have created the ACLaccess-list 102 permit ip 172.16.0.0 0.0.0.255 172.16.10.0 0.0.0.255What I can not figure out is how to apply this to my VPDN PPTP groupvpdn enable ! vpdn-group 1 ! Default PPTP VPDN group accept-dialin protocol pptp virtual-template 1 !interface Virtual-Template1 ip unnumbered GigabitEthernet0/2 peer default ip address pool pptp-pool ppp encrypt mppe auto ppp authentication ms-chap ms-chap-v2 !access-list 102 permit ip 172.16.0.0 0.0.0.255 172.16.10.0 0.0.0.255 ip local pool pptp-pool 172.16.10.1 172.16.10.254Any help will be appreciatedThanks
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...