Downloadable ACLs for VPN split-tunneling

jose.couto — Sun, 10 Mar 2019 21:20:59 GMT

Hello.

We know about the ipsec:inacl attribute for configuring split-tunneling for a VPN group, but AFAWK you must define the ACL in the local configuration of the router. Is it possible to define the ACL in the RADIUS server instead? How? By the way, is it possible to do the same for the IPsec pools?

Thank you beforehand.

Re: Downloadable ACLs for VPN split-tunneling

smahbub — Wed, 26 Oct 2005 17:50:58 GMT

The following steps to be followed for spit tunnelling

Set the split tunneling policy to only tunnel networks in the list.

Configure network lists and default domain names in the Common Client Parameters section of this screen.

Change the default setting on the client PC's Internet Protocol (TCP/IP) Properties window. Go to Control Panel > Network Connections > VPN > VPN Properties > Networking > Internet Protocol (TCP/IP) > Select Properties > Internet Protocol (TCP/IP) Properties window. Select Advanced and uncheck the box.

Note: If you enable both split tunneling and individual user authentication for a VPN 3002 Hardware Client, you must authenticate only when sending traffic bound for destinations on the other side of the IPSec tunnel.

topic Downloadable ACLs for VPN split-tunneling in Network Access Control

Downloadable ACLs for VPN split-tunneling

Re: Downloadable ACLs for VPN split-tunneling