cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Welcome to the Cisco Small Business Community

Have a question? Click on a topic board below to get started in the community.

874
Views
0
Helpful
1
Replies
neil
Beginner

Setup SRP527W to ASA5505 Split Tunnel VPN

Hi, I have been trying to setup a split tunnel between my a small office running a SRP527W and the Head Office running a ASA5505

Does anyone have and docs or howto's on this? as I am not getting very far by working through both units manuals.

The split tunnel part isnt critical for now I just need the two sites speaking together and from there I can start putting in place a split tunnel etc.

Thanks!

1 REPLY 1

In order to o allow split tunneling for the users in the group,  please follow these steps to configure your tunnel group.

Choose Configuration >

Remote Access VPN >

Network (Client) Access >

Group Policies, and choose the Group Policy in which you want to enable local LAN access.

Then click Edit.

Click Split Tunneling.

Uncheck the Inherit box for Split Tunnel Policy, and chose Tunnel Network List Below.

Uncheck the Inherit box for Split Tunnel Network List, and then click Manage in order to launch the ACL Manager.

Within the ACL Manager, choose Add >

Add ACL… in order to create a new access list.

Provide a name for the ACL, and click OK.

Once the ACL is created, choose Add >

Add ACE… in order to add an Access Control Entry (ACE).

Define the ACE that corresponds to the LAN behind the ASA. In this case, the network is 192.168.10.0/24.

· Click the Permit radio button.

· Choose the network address with mask 192.168.10.0/24 .

· (Optional) Provide a description.

· Click OK

Click OK in order to exit the ACL Manager.

Be sure that the ACL you just created is selected for Split Tunnel Network List.

Click OK in order to return to the Group Policy configuration.

Click Apply and then Send (if required) in order to send the commands to the ASA. In order to o allow split tunneling for the users in the group,  please follow these steps to configure your tunnel group
Choose Configuration >

Remote Access VPN >

Network (Client) Access >

Group Policies, and choose the Group Policy in which you want to enable local LAN access. Then click Edit.
Click Split Tunneling.
Uncheck the Inherit box for Split Tunnel Policy, and chose Tunnel Network List Below.
Uncheck the Inherit box for Split Tunnel Network List, and then click Manage in order to launch the ACL Manager.
Within the ACL Manager, choose Add >

Add ACL… in order to create a new access list.
Provide a name for the ACL, and click OK.


Once the ACL is created, choose Add >

Add ACE… in order to add an Access Control Entry (ACE).
Define the ACE that corresponds to the LAN behind the ASA. In this case, the network is 192.168.10.0/24.
· Click the Permit radio button.
· Choose the network address with mask 192.168.10.0/24 .
· (Optional) Provide a description.
· Click OK
Click OK in order to exit the ACL Manager.
Be sure that the ACL you just created is selected for Split Tunnel Network List.
Click OK in order to return to the Group Policy configuration.
Click Apply and then Send (if required) in order to send the commands to the ASA.

Message was edited by: Juan Diego Rodriguez Estrada

Create
Recognize Your Peers
Polls
When looking for support content like videos or documents, how do you arrive at our support content?
Help us support you!