I've got to build a split-tunnel VPN solution tomorrow, and I'm having
trouble finding good config examples. I wonder if a kind soul would be
willing to give me a high-level overview, and perhaps post the config files
for the router.
Here's the situation:
Remote office: Has ISDN connection, and I bought an 802 router.
Corporate office: Has 1720 router and a 3030 concentrator.
The goal is to set it up so that any "company" traffic is encrypted between
the 802 and the 3030. Any "non-company" traffic at the remote site should
just go straight out through the ISP to the Internet unencrypted.
On the remote (802) side: Do I have to set up a crypto-map? If we are
using PAT, do I have to create a route-map that says "don't use NAT/PAT for
routes between the two company sites"? Do I have to set up any crypto keys
or anything like that?
On the corporate side, how do I set up the 3030? For individual users, I
just set up an account and password. How does this work for a remote
device, such as a router?
Anything advice you can offer will be greatly appreciated.