Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
670
Views
0
Helpful
1
Replies

All host traffic going to VPN server in Anyconnect VPN

amanverma
Level 1
Level 1

‎01-30-2018 04:44 AM - edited ‎03-12-2019 04:58 AM

I have configured remote access anyconnect VPN and enabled IPsec and SSL both via ASDM.

everything is working fine but when user connects to VPN then with ip address VPN sets a default gateway pointing towards ASA IP. so then all internet traffic of user goes to tunnel as well and internet won't work along with VPN.

Attached is running-config of ASA, please check what is the issue. 

Labels:
Preview file
7 KB
0 Helpful
1 Reply 1

Seb Rupik
VIP Alumni
VIP Alumni

‎01-30-2018 04:50 AM - edited ‎01-30-2018 04:51 AM

Hi there,

Try adding the following:

!
access-list ACL_VPN_CLIENT_SPLIT_TUNNEL standard permit 192.168.1.0 255.255.255.0
!
group-policy GroupPolicy_Test attributes
  split-tunnel-policy tunnelspecified
  split-tunnel-network-list value ACL_VPN_CLIENT_SPLIT_TUNNEL
!

...this will configure a split-tunnel sending only traffic destined to your INSIDE 192.168.1.0/24 subnet via the VPN, all other traffic will be routed locally at the client site.

 

cheers,

Seb.

 

0 Helpful
Customers Also Viewed These Support Documents