07-13-2021 06:09 AM
Hello,
I have an HA pair of 2120 and I have configured RA VPN.
There is split tunnel so the users use their local internet.
I would like to ask if there is a configuration where I have the split tunnel in place and I only allow a couple of sites to go through the internet form the company.
Thanks and regards,
Konstantinos
Solved! Go to Solution.
07-13-2021 06:20 AM
I assume you are running FTD image?
You can use split tunnel and use "dynamic-split-include-domains" attribute to define domains to include in the VPN tunnel.
07-13-2021 06:12 AM
Personally if you looking local breakout, split tunnel, Only allow Corporate IP address via VPN, rest go directly to internet to save HQ Internet Bandwidth, again business requirement. (how you like to control user)
full Cone tunnel vs split tunnel.
07-13-2021 06:15 AM
What I want is for a public IP to go through the tunnel and be routed to the internet through the company's public IP
07-13-2021 06:17 AM
yes you create ACL and what to allow via VPN or go direct internet.
07-13-2021 06:20 AM
I assume you are running FTD image?
You can use split tunnel and use "dynamic-split-include-domains" attribute to define domains to include in the VPN tunnel.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide