Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
517
Views
0
Helpful
1
Replies

VPN not allowing local

sprocket10
Level 2
Level 2

‎04-03-2019 06:19 AM

We have created an Anyconnect VPN tunnel that tunnels all traffic via the HQ. This works perfectly and all internet and interal traffic is routed via the ASA. The only issue we have is that while the VPN is connected the user cant access any local devices, i.e home printer.

Under the AnyConnect Client Profile, the Local Lan Access is ticked.

Is there another setting to allow local lan access?

Labels:
0 Helpful
1 Reply 1

Rob Ingram
VIP
VIP

‎04-03-2019 07:21 AM

Hi,

For split tunnel with local lan access, you will need to create an ACL and modify the group policy. E.g:-

access-list LOCAL_LAN permit host 0.0.0.0
group-policy GP-1 attributes
 split-tunnel-policy excludespecified
 split-tunnel-network-list value LOCAL_LAN

Reference here.


HTH

0 Helpful
Customers Also Viewed These Support Documents