I am trying to add the MS IP's via cli for split-tunnelling.
the documentation states the following...
set network tunnel global-protect-site-to-site <name> client split-tunneling access-route [ <access-route1>
but this is not working on 8.1.9
I can get this far..
set network tunnel global-protect-gateway "gateway-name" but cannot configure the client settings.
any useful docs would be much appreciated.
Solved! Go to Solution.
This path does not work when the device is managed by Panorama:
> edit template <NAME> config vsys vsys1 global-protect global-protect-gateway <NAME> remote-user-tunnel-configs <NAME> split-tunneling
The only options after that point are:
exclude-domains Domains need to go out of tunnel
include-domains Domains need to go through tunnel
<Enter> Finish input
However if I do a show at that point, it clearly shows remaining configuration:
exclude-access-route [ 22.214.171.124/32 .....]
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!