Dear all,

Please refer to below diagram,

Need some help regarding PBR,

The scenario is we had an ILL connected to Cisco ASA Gig 1/3. Due to company requirement we had to connect a P2P link to same physical port using sub-interfaces because of no extra physical ports left.  

We have configured our existing ILL link to Gig 1/3.100 and new P2P link to Gig 1/3.200. 

Now we have old PBR configuration issue in the inside Gig 1/4 interface. Even the traffic which need to go through the P2P, flow through the PBR.

PBR configurations as below.

!
interface GigabitEthernet1/4
nameif inside
security-level 100
ip address 10.242.2.209 255.255.255.248
policy-route route-map inside_routemap
!

!
route-map inside_routemap permit 5
match ip address aclinside1_4_https
set ip next-hop 192.168.100.1
!

access-list aclinside1_4_https extended deny ip 10.242.1.0 255.255.255.0 10.242.2.0 255.255.255.240

access-list aclinside1_4_https extended permit ip 10.242.1.0 255.255.255.0 any

access-list aclinside1_4_https extended deny ip 10.242.4.0 255.255.255.0 object-group DM_INLINE_NETWORK_6
access-list aclinside1_4_https extended permit ip 10.242.4.0 255.255.255.0 any

Our remote site LAN block is 172.19.8.0/24. When we ping to 172.19.8.16 from 10.242.4.2 , it goes through the PBR,

How do I exclude the traffic that goes to 172.19.8.0/24 from inside zone. 

NOTE - we have already configured static route and access rules for P2P connection. 

Thanks.