Peter With routers as client, we can manipulate the routes, no issues.
But, with the PC VPN client, the route is installed automatically by the PC. For both the cases - split tunnel and tunnel all, a route will be added with split tunnel network or default route respectively with next hop of the IP address that has been leased to the PC. The behaviour, I see is that for tunnel all, the default route is with the ".1" address of the address pool network. With regards Kings On Mon, Feb 1, 2010 at 5:41 PM, Peter Debye <[email protected]> wrote: > I advise you to use DVTI on the hw client; with that, and with no > split tunnel-list received, > the client sets the following static routes: > - static to Servers' public address via wan interface (physical); > - static default via DVTI. > (tested with vers 12.4(24)T1 on 2811 and 804(39) on asa5510) > > ========================== >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
