Hello
I want to apply a route ACL to a user role to split tunnel traffic matching an appliation like office365 but the first match is always the ALC statement for the network any any. The question is how can I apply a route ACL to match an application before passing the ACL statement base on the Layer 3 ( source/destination network ) ?
Here is the configuration:
ip access-list route no-split-tunnel
user any any route ipsec-map default-vpnip-local-ipsecmap
user any app salesforce forward app-position 2
user any app okta route ipsec-map default-vpnip-local-ipsecmap app-position 1
user any app speedtest forward app-position 5
user any app office365 forward app-position 3
user any app box-net forward app-position 4
!
Thanks