Meraki

Community

Split Tunneling over remote VPN

Solved
RodneyBell
Conversationalist
‎Jul 17 2020 3:14 PM
‎Jul 17 2020 3:14 PM

Split Tunneling over remote VPN

Recently deployed client VPN and find I am unable to access our AWS hosted servers with split tunneling enabled. Works fine with split tunneling disabled, but I am concerned about performance as I scale up VPN users without split tunneling enabled.

0 Kudos
1 Accepted Solution
Bettencourt
Meraki Employee
Meraki Employee
‎Jul 18 2020 5:33 PM
‎Jul 18 2020 5:33 PM

I'm not sure if your clients are Windows, but if they are ensure you are not forgetting to add the VPN routes manually or via some preferred 3rd party tool.

 

https://documentation.meraki.com/MX/Client_VPN/Configuring_Split_Tunnel_Client_VPN

 

Note: This configuration involves manually adding entries to a client's route table, and should only be followed by users with a thorough understanding of routing mechanisms.

View solution in original post

4 Replies 4
PhilipDAth
Kind of a big deal
Kind of a big deal
‎Jul 17 2020 7:31 PM
‎Jul 17 2020 7:31 PM

That suggests your split tunnel configuration is wrong.  Try out my client VPN wizard:

https://www.ifm.net.nz/cookbooks/meraki-client-vpn.html 

tannermoreno
Conversationalist
‎Jul 18 2020 12:49 PM
‎Jul 18 2020 12:49 PM

Hi RodneyBell

 

I share the official link of Cisco Meraki, to apply Split Tunnel in VPN Clients.

 

https://documentation.meraki.com/MX/Client_VPN/Configuring_Split_Tunnel_Client_VPN 

 

I hope you can resolve your incident. Personally, it has worked correctly for me, with Windows 10 and MX64 and MX84 devices.

 

Regards.

Nash
Kind of a big deal
‎Jul 18 2020 3:20 PM
‎Jul 18 2020 3:20 PM

I strongly recommend Philip's generator. Otherwise, you can use a PowerShell script in Win10 to add the routes you need. I've got a (no longer maintained but valid) script in my signature line that you can steal commands from.

Windows 10 Client VPN scripts: Makes life better!
Bettencourt
Meraki Employee
Meraki Employee
‎Jul 18 2020 5:33 PM
‎Jul 18 2020 5:33 PM

I'm not sure if your clients are Windows, but if they are ensure you are not forgetting to add the VPN routes manually or via some preferred 3rd party tool.

 

https://documentation.meraki.com/MX/Client_VPN/Configuring_Split_Tunnel_Client_VPN

 

Note: This configuration involves manually adding entries to a client's route table, and should only be followed by users with a thorough understanding of routing mechanisms.

li.common.scroll-to.top
Get notified when there are additional replies to this discussion.
Welcome to the Meraki Community!
To start contributing, simply sign in with your Cisco ID. If you don't yet have a Cisco ID, you can sign up.
Labels
© 2025 Cisco Systems, Inc.