This solution does not work.

vpersaud001 · ‎02-17-2015

Is it possible to allow alwayson clients access to a specific host with a public IP whether the vpn connects or not? This is for allowing IT support remote access to clients for troubleshooting.

Thanks for any ideas.

VP

rizwanr74 · ‎03-07-2015

Remote-access vpn-client do not work in such a way, what you like to achieve not doable, no way.

When vpn-client connects in, they are given an ip-address from the pool you have defined and so vpn-client receives IP address from the pool but not any public addresses.

Hope that answers your question.

Thanks

vpersaud001 · ‎03-16-2015

Hi rizwanr... thanks for responding. Sorry my post may have been a little unclear. I needed alwayson vpn-clients to be able to access specific hosts whether the vpn connects or not. The alwayson VPN is configured to force clients to SBL and tunnel all traffic. The solution is to configure split tunneling and exclude the hosts that should not go over VPN using commands:

split-tunnel-policy excludespecified

split-tunnel-network-list value ACLNAME

vpersaud001 · ‎10-20-2015

This solution does not work. The problem is that always on forces the client to have to connect to VPN before gaining network access. The client does get a DHCP IP but cannot access any other network resources.

Does anyone know of any pre-vpn-login method that would allow an always on client access to specific network resources? I already looked at Secure Desktop Manager without any luck.

Thanks.

Is Alwayson VPN splittunneling possible?