Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

VPN internet traffic issues L2TP Ipsec Cisco Pix 515e

We have a cisco 515 configured for L2TP over ipsec vpn.

Once connected we cannot browse the internet, we can ping internal network fine. If send all traffic through gateway is ticked on the client we still have the same issue.

We have a flat network so just firewall - layer 2 switches and a DHCP server is plugged into a switch.

VPN config from the switch:

group-policy MyGroup internal
group-policy MyGroup attributes
wins-server value 192.168.120.3 192.168.120.4
dns-server value 192.168.120.3 192.168.120.4
vpn-simultaneous-logins 30
vpn-session-timeout none
vpn-tunnel-protocol IPSec l2tp-ipsec 
split-tunnel-policy tunnelspecified
split-tunnel-network-list value split-tunnel
default-domain value my.domain.com
group-policy filter internal
group-policy filter attributes


tunnel-group MyGroup general-attributes
authentication-server-group vpn-auth
default-group-policy MyGroup
dhcp-server 192.168.120.4
tunnel-group MyGroup ipsec-attributes
tunnel-group MyGroup ppp-attributes
no authentication chap
authentication ms-chap-v2

 

Everyone's tags (1)
2 REPLIES

Hi,Can you try changing the

Hi,

Can you try changing the group-policy as tunnel all instead of tunnel specified in split-tunnel-policy.

 

Regards

Karthik

New Member

Thanks for pointing me in the

Thanks for pointing me in the right direction:

http://blog.soundtraining.net/2013/03/how-to-configure-split-tunneling-on.html

 

conf t

group-policy DefaultRAGroup attributes

split-tunnel-policy tunnelspecified

 

did the trick

 

162
Views
0
Helpful
2
Replies