split tunneling

Dear All

I am trying to etup split tunneling for our VPN Users at work. I feel my config is correct but I does not work. I was looking for some feedback and maybe what I might be missing. I have pasted the relevant parts of my config below. If you require anymore pls let me know.

Best Regards


vpngroup ITIVPN address-pool vpnpool1

vpngroup ITIVPN dns-server

vpngroup ITIVPN default-domain ITI-AB.com

vpngroup ITIVPN split-tunnel ITIVPN_splitTunnelAcl

vpngroup ITIVPN split-dns iti.arabbank.plc arabbank.plc

vpngroup ITIVPN idle-time 1800

vpngroup ITIVPN max-time 1800

vpngroup ITIVPN password ********

access-list ITIVPN_splitTunnelAcl permit ip any any

access-list ITIVPN_splitTunnelAcl permit ip ITI any

access-list ITIVPN_splitTunnelAcl permit ip any

Reply to
Loading thread data ...

Hi There,

I need to define Split Tunneling on site to site vpn. Could any one please provide with some relevant links on Cisco Pages. I had a look at few but nit able to find any sample configuration.

Any Advice/help would be highly appreciated.

Thanks in adavance ! AA

Reply to

Which product and which software release?

Reply to
Walter Roberson

Thinking again, that request only makes sense if you are using PPTP for the site to site VPN, rather than IPSec. If you are using IPSec (or L2TP Over IPSec, or EzVPN) then just change your crypto map ACLs to only include the traffic you want to go over the link.

Reply to
Walter Roberson

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.