[c-nsp] ASA 5520 Remote Access VPN
Eimantas Zdanevičius
eimantas at occ.lt
Wed Feb 4 02:45:00 EST 2009
Sigurbjörn Birkir Lárusson wrote:
> Something along these lines if you wanted to just send 10.10.53.0/24 and
> 10.10.54.0/24 through the VPN tunnel
>
> tunnel-group testgroup general-attributes
> default-group-policy testpolicy
>
> group-policy testpolicy internal
> group-policy testpolicy attributes
> split-tunnel-policy tunnelspecified
> split-tunnel-network-list value TunnelList
>
> access-list TunnelList standard permit 10.10.53.0 255.255.255.0
> access-list TunnelList standard permit 10.10.54.0 255.255.255.0
>
> BR,
> Sibbi
>
This perfectly sets routes for specified networks.
But how to disable default gateway setting on vpn client?
If i go to ASA ASDM->Configuration->VPN->Default Tunnel Gateway it says:
To configure default tunnel gateway, go to Static Route.
i have two static routes configured:
S aaa.bbb.ccc.ddd 255.255.255.255 [1/0] via 10.10.1.2, inside
S* 0.0.0.0 0.0.0.0 [1/0] via 10.10.4.254, outside
More information about the cisco-nsp
mailing list