Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1103
Views
0
Helpful
3
Replies

Cisco EasyVPN Client Internet Access

JamesRowley
Level 1
Level 1

‎07-30-2013 03:40 AM

Hi,

I have a Cisco 887 which has been configured mainly using CCP, I have managed to setup a basic configuration with a firewall and now a VPN. I can get clients to VPN into the office and access the local LAN resources. From what I've read I am not using Split tunneling as I can connect using the VPN client on my iphone ( which I want). But any VPN client can't access the internet.

I guess I need to add something to route the traffic back out? But I am unsure on what exactly?

I have attached my config, appreciate any help on this plus any other tips if you see any schoolboy errors!

Thanks

James

Labels:
15364892-RunningConfig_192.168.1.1.txt.zip
0 Helpful
3 Replies 3

johnlloyd_13
Level 9
Level 9

‎07-30-2013 10:32 AM

hi james,

could you try:

Router(config)#ip access-list extended SPLIT-TUNNEL

Router(config-ext-nacl)#permit ip 10.0.0.0 0.255.255.255 any

Router(config)#crypto isakmp client configuration RemoteUsers

Router(config-isakmp-group)#acl SPLIT-TUNNEL

0 Helpful

JamesRowley
Level 1
Level 1
In response to johnlloyd_13

‎07-30-2013 12:29 PM

Hi,

Thanks,I've read that adding a split tunnel will stop my iphone vpn from working? I wanted all vpn traffic to be routed through the tunnel including Internet traffic.




Sent from Cisco Technical Support iPad App

0 Helpful

johnlloyd_13
Level 9
Level 9
In response to JamesRowley

‎07-31-2013 12:12 AM

Hi James,

Split tunnelling will just protect "interesting" traffic matched by the ACL and send it to the VPN tunnel. Other network traffic will be routed as per normal.

It is not advisable to include Internet traffic as this will put your private network at risk and also cause a congestion to your VPN connection.

Sent from Cisco Technical Support iPhone App

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents