topic Default Gateway on VPN Client in Network Security https://community.cisco.com/t5/network-security/default-gateway-on-vpn-client/m-p/667008#M1059282 <P>All,</P><P>I am running a Pix 515 with 6.3 code. When the VPN Connection is established, the default gateway on the PC is the same as the IP Address on the PC. The VPN Connection is made on the Internet Line in and the Internet Traffic, would obviously be on the same internet line, going out. First, is it possible to be able to establish internet connectivity while being VPN'd in, and if so, how. Much Appreciated.</P> Fri, 21 Feb 2020 09:18:42 GMT rwamstutz 2020-02-21T09:18:42Z Default Gateway on VPN Client https://community.cisco.com/t5/network-security/default-gateway-on-vpn-client/m-p/667008#M1059282 <P>All,</P><P>I am running a Pix 515 with 6.3 code. When the VPN Connection is established, the default gateway on the PC is the same as the IP Address on the PC. The VPN Connection is made on the Internet Line in and the Internet Traffic, would obviously be on the same internet line, going out. First, is it possible to be able to establish internet connectivity while being VPN'd in, and if so, how. Much Appreciated.</P> Fri, 21 Feb 2020 09:18:42 GMT https://community.cisco.com/t5/network-security/default-gateway-on-vpn-client/m-p/667008#M1059282 rwamstutz 2020-02-21T09:18:42Z Re: Default Gateway on VPN Client https://community.cisco.com/t5/network-security/default-gateway-on-vpn-client/m-p/667009#M1059288 <HTML><HEAD></HEAD><BODY><P>You can use the split tunnel feature where you can define which traffic (src/dest) to encrypt and what not to encrypt.</P><P></P><P>Basically, you need to define this via ACL, for example, encrypt only 10.1.1.0 accessing 10.1.100.0. Other than that, do not encrypt and should flow outside the tunnel:</P><P></P><P>access-list splittunnel permit ip 10.1.1.0 255.255.255.0 1.1.100.0 255.255.255.0</P><P></P><P>nat (inside) 0 access-list 80</P><P></P><P></P><P>More details/example on this is available at:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080172787.html#wp1076294" target="_blank">http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configuration_guide_chapter09186a0080172787.html#wp1076294</A></P><P></P><P></P><P>HTH</P><P>AK</P></BODY></HTML> Thu, 16 Nov 2006 03:06:34 GMT https://community.cisco.com/t5/network-security/default-gateway-on-vpn-client/m-p/667009#M1059288 a.kiprawih 2006-11-16T03:06:34Z