Hi
I have a Cisco ASA with vpn ssl anyconnect. We need to do split tunnel and tunnel all in the firewall for the same pool address and for the same interface outside and for the same group-alias.
All is working ok with split tunnel but my issue is for tunnel all. I should redirect internet traffic for anyconnect client users to another external firewall (Palo Alto) using another interface in the Cisco ASA.
I was thinking in PBR.
Perhaps, someone will have any idea about this case?
Regards, Ivan.