Question about Windows L2TP to ASA split tunneling with tunnel-network-list:
1. If I enable "Use default gateway on remote network" I get no split tunneling (as expected). Client gets a default route to ASA 2. If I uncheck "Use default gateway on remote network" I only get one network route to ASA; it does not seem to download the tunnel-network-list to determine split tunnel networks like VPN Client/AnyConnect ip local pool POOL-L2TP 10.20.20.1-10.20.20.200 access-list SPLIT per ip 10.0.0.0 255.0.0.0 any access-list SPLIT per ip 172.16.0.0 255.255.0.0 any group-policy DfltGrpPolicy attributes vpn-tunnel-protocol IPSec l2tp-ipsec split-tunnel-policy tunnelspecified split-tunnel-network-list value SPLIT I get a route 10.0.0.0/8 to the ASA. But the tunnel-network-list is ignored; is this expected behaviour? Richard
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
