Examples of Split Tunneling
I've created the following video to show you how to configure a split tunnel on a Cisco ASA security appliance.
Start by creating an access control list to permit a traffic-flow from the internal network:
access-list Split_Tunnel_List standard permit 192.168.101.0 255.255.255.0
Next, enter attributes configuration mode for the desired VPN group policy (in this example, the group-policy name is Account Reps NA):
group-policy "GroupPolicy_Account Reps NA" attributes
Now, specify the split tunnel mode. You can choose from the following three options:
- excludespecified (exclude only networks specified by split-tunnel-network-list)
- tunnelall (tunnel everything)
- tunnelspecified (tunnel only networks specified by split-tunnel-network-list)
split-tunnel-network-list value Split_Tunnel_List
Watch the video for a complete demonstration of each of the commands.
For More Cisco ASA Configuration Information
Pick up a copy of my configuration guide The Accidental Administrator: Cisco ASA Security Appliance, available through Amazon and other resellers.
Please Leave a Comment
If you find this tutorial helpful or if you notice something that needs to be corrected, please leave a comment.