Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
533
Views
0
Helpful
3
Replies

split-tunnel issue

sasa.rasovic
Level 1
Level 1

‎03-03-2005 02:05 AM

Hi,

I'm having this issue with split-tunneling for VPN client 4.03.

part of PIX config:

access-li 80 permit ip 192.168.1.0 255.255.255.0 192.168.5.0 255.255.255.0

ip local pool vpn 192.168.5.1-192.168.5.200

vpngroup remote_access split-tunnel 80

VPN client does connect, but log shows the following entries:

440 10:09:18.718 03/03/05 Sev=Warning/2 CVPND/0xE3400013

AddRoute failed to add a route: code 87

Destination 192.168.5.0

Netmask 255.255.255.0

Gateway 255.255.255.255

Interface 192.168.5.1

441 10:09:18.718 03/03/05 Sev=Warning/3 CM/0xA310002B

Failed to add Split Tunnel route.

Client is connected but there is no route to 192.168.1.0.

It seems that split-tunnel route add failed.

Anyone knows what seems to be the issue with this?

Thanks,

Sasa

Labels:
0 Helpful
3 Replies 3

sasa.rasovic
Level 1
Level 1

‎03-03-2005 02:55 AM

OK,

Solved this, but only with 4.6 VPN client. Still not able to get this done with the older client. Anyone?

Thanks

Sasa Rasovic

0 Helpful

mostiguy
Level 6
Level 6
In response to sasa.rasovic

‎03-03-2005 08:13 AM

Is the older client on a network that is numbered 192.168.1.0/24? Some clients have problems when the destination network for the tunnel (not the vpn client dynamic ip pool), is the same as their local network ip addressing scheme

0 Helpful

sasa.rasovic
Level 1
Level 1
In response to mostiguy

‎03-03-2005 09:21 AM

No. Client is on the different subnet.

S

0 Helpful
Customers Also Viewed These Support Documents