![]() You might for example have configured NAT0 from a certain LAN network to the VPN pool network and this would already mean that this LAN network would be the only network it might potentially be able to access. ![]() What the VPN Client can access on the LAN depends on other configurations on the ASA. ![]() The Client will only be acle to communicate with the LAN networks with the IP address thats assigned to it by the ASA or some DHCP server if you have configured the ASA in that way. If you changed the VPN Client connections configuration to use Split Tunnel then this 0.0.0.0/0 would change to only containing the networks you mention in the Split Tunnel ACL. The 0.0.0.0/0 is simply meant to reference "any" destination network. Since you are using Full Tunnel VPN it means that ALL traffic is tunneled whatever the destination network might be. The secure routes just specifies the destination networks to which traffic is sent through your active VPN Client connection.
0 Comments
Leave a Reply. |