Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
968
Views
0
Helpful
5
Replies

Cisco Anyconnect and local network.

hack3rcon
Level 1
Level 1

‎09-16-2020 02:23 AM

Hello,

When I'm using Cisco Anyconnect for access to a VPN server, then I can't access to local network and local printers that connected to network by NIC.

I selected "Enable local LAN access" option too, but problem not solved.

How can I solve it?

 

Thank you.

Labels:
0 Helpful
5 Replies 5

Rob Ingram
VIP
VIP

‎09-16-2020 02:28 AM

Hi,

You will need to also configure split tunnelling on the ASA, example:-

 

access-list ALL_EXCEPT permit host 0.0.0.0
group-policy GP-1 attributes
split-tunnel-policy excludespecified
 split-tunnel-network-list value ALL_EXCEPT

Refer to this post for more information

 

HTH

0 Helpful

hack3rcon
Level 1
Level 1
In response to Rob Ingram

‎09-18-2020 06:20 AM

I should configure it on VPN server? 

0 Helpful

kapydan88
Level 4
Level 4
In response to hack3rcon

‎09-19-2020 12:00 PM

Hello.

 

Yes, you should configure this parameter (split exclude or split include) on the device that you are using anyconnect- ASA, Firepower, etc

 

http://blog.soundtraining.net/2013/03/how-to-configure-split-tunneling-on.html

 

https://integratingit.wordpress.com/2019/03/16/asa-split-tunnelling/

0 Helpful

hack3rcon
Level 1
Level 1

‎09-19-2020 11:16 AM

As you see, We defined the Route as below:

photo5994411028563211256.jpg

All local network ranges defined.

What is the problem?

 

Thank you.

0 Helpful

hack3rcon
Level 1
Level 1

‎09-21-2020 05:12 AM

What is my problem?

0 Helpful
Customers Also Viewed These Support Documents