We have a setup with AnyConnect and split tunneling so I know that there is some service getting blocked, but can't seem to find which one. This is coming from China so we have an SDN provider that creates us a tunnel so our users can use Google and their services amongst other programs. We have this working for all of our MAC computers and have recently been introducing Windows into the environment but I am unable to get the Windows computer to connect while using split tunneling. If I send all traffic through the tunnel then it works, but if I split it with our current allow list, it won't work.
I ran a Wireshark capture but it isn't telling me much or I am not seeing something that is there. Has someone come across this issue and had to whitelist/allow certain services through the tunnel in order for their Windows devices to be able to connect.
*Whitelist/allow - Both Client Routing & Dynamic Client Routing are active.