Hi,

I need some Help with a doubt about Split Tunneling Configuration.

I need exclude a specific ip address from the split-tunneling networks already configured.

this is my configuration:

access-list Split_Tunnel standard permit 192.168.0.0 255.255.0.0
access-list Split_Tunnel standard permit 10.0.0.0 255.0.0.0

group-policy GroupPolicy_Anyconnect_Access_Exception_1 attributes
wins-server none
dns-server value xxxxx xxxxxxx
vpn-simultaneous-logins 3
vpn-idle-timeout 480
vpn-session-timeout none
vpn-tunnel-protocol ssl-client
group-lock value Anyconnect_access
split-tunnel-policy tunnelspecified
split-tunnel-network-list value Split_Tunnel
default-domain value xxxxx
split-dns value t380.inet telefonica wh.telefonica cic.wh.telefonica telefonica.corp
mailar.telefonica.corp mailar.telefonica.com tefgad.com telefonicaglobalsolutions.com
telefonicabusinesssolutions.com

I need exclude from the split-tunnel, the ip 10.0.0.50, my question is, if i modify the access-list denying this ip, the explit-tunnel will exclude the IP.

example:

access-list Split_Tunnel standard deny 10.0.0.50 255.255.255.255

access-list Split_Tunnel standard permit 192.168.0.0 255.255.0.0
access-list Split_Tunnel standard permit 10.0.0.0 255.0.0.0

Br,

Fidel Gonzalez