An engineer notices that while an employee is connected remotely, all traffic is being routed to the corporate network. Which split-tunnel policy allows a remote client to use their local provider for Internet access when working from home?
An engineer notices that while an employee is connected remotely, all traffic is being routed to the corporate network. Which split-tunnel policy allows a remote client to use their local provider for Internet access when working from home?
A split-tunnel policy allows certain traffic to be routed through the VPN while other traffic can go directly to the local network or the Internet. In this case, the policy that enables a remote client to use their local provider for Internet access while routing only specific traffic through the corporate network is 'excludespecified'. This configuration excludes the specified networks from being routed through the VPN and allows all other traffic to use the local Internet service.
exclude specified is correct, notes from Cisco community: In an exclude-specified configuration; AnyConnect will not tunnel traffic to or from the networks specified in the Network List. Traffic from or to all other addresses is tunneled
Correct answer is C, here is why: Now, specify the split tunnel mode. You can choose from the following three options: excludespecified (exclude only networks specified by split-tunnel-network-list) tunnelall (tunnel everything) tunnelspecified (tunnel only networks specified by split-tunnel-network-list) you're going to all all non RFC-1918 in ACL if you choose Answer D, the correct answer is C tunnel only whats included in ACL, the rest will go over ISP not tunnel. remember work smart!
D is the correct answer
The split-tunneling policy that allows a remote client to use their local provider for internet access when working from home is usually called "excludespecified".
tunnelall - This keyword specifies that all traffic goes through the tunnel. Users can reach the Internet through the tunnel. tunnelspecified -This keyword tunnels all traffic from or to the specified networks. This option enables split tunneling. It lets you create a network list of addresses to tunnel. Data to all other addresses travels in the clear, and is routed by the remote user’s Internet service provider. excludespecified - This keyword defines a list of networks to which traffic goes in the clear. This feature is useful for remote users who want to access devices on their local network, such as printers, while they are connected to the corporate network through a tunnel.