Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
385
Views
0
Helpful
1
Replies

PIX 6.3 Split tunneling to specific internet hosts

f00f1ter
Level 1
Level 1

‎03-06-2009 08:52 AM - edited ‎03-11-2019 08:01 AM

I asked this question before and thought I had it straight, but having tried the suggested solution it is not working.

Is it possible to allow Cisco VPN clients access to only certain internet IP addresses through split tunneling? I have tried using the split tunnel ACL:

access-list split_tunnel deny host x.x.x.x (internet host x)

access-list split_tunnel deny host y.y.y.y (internet host y)

access-list split_tunnel permit 0.0.0.0 0.0.0.0 (tunnel everything else)

This doesn't appear to work. Is this possible and any other suggestions?

Thanks

Labels:
0 Helpful
1 Reply 1

Ivan Martinon
Level 7
Level 7

‎03-06-2009 09:42 AM

I have not tested this, but I am pretty sure it will not work since the split tunnel list will just check for the ip address definition and not the action of the actual list.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card