Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
487
Views
0
Helpful
1
Replies

Set up Split Tunnel on Cisco 8xx router with L2L remote access to VPN 3030

jkoven
Level 4
Level 4

‎10-29-2008 02:04 PM

I've got a remote site with an 871 router. it is connected via an ipsec tunnel back to my head end VPN 3030 concentrator. all traffic is sent over the tunnel. i would like to break off traffic that is not destined for the head-end LAN and point it straight to the internet.

Please help me with IOS config on the remote router.

thanks in advance.

Labels:
0 Helpful
1 Reply 1

pkaretnikov
Level 1
Level 1

‎10-30-2008 11:02 PM

static routing should take care of the issue. Instead of using the 0.0.0.0 route pointing into your tunnel, only set up route(s) that are on the other side of the tunnel, to use the tunnel.

it will end up being something like this if you want to keep it simple. Depending on your security stance it can get much more complicated.

This example assumes that your company is using the 192.168.0.0/16 network.

ip route 0.0.0.0 0.0.0.0

ip route 192.168.0.0 255.255.0.0

It's hard to get too much more specific without seeing some configs.

0 Helpful
Customers Also Viewed These Support Documents