Cisco Bug: CSCum90946 - Routing LOCAL LAN subnet when Split-Include is Supernet of LOCAL subnet

Last Modified

Apr 30, 2020

Products (1)

Cisco AnyConnect Secure Mobility Client

Known Affected Releases

3.1(4072) 3.1(5152) 4.0(61)

Description (partial)

Symptom:
If the split-include network is a supernet of a local subnet on the client host (e.g. 192.168.0.0/16, local subnet 192.168.1.0/24), the corresponding traffic will be tunneled, except the local subnet traffic which will be allowed in the clear.

Conditions:
Split-include tunneling configuration with split-include network overlapping the local subnet on the client host.

Related Community Discussions

ASA Access-List with 0.0.0.0/32?

Hello All, ASA: v9.4(1) AnyConnect: v4.5 According to the AnyConnect 4.5 Release Notes (*click for explanation). The section: "New Split Include Tunnel Behavior (<key>CSCum90946</key>)" says that, formerly, in order for the split-tunnel to tunnel a client's traffic to their local subnet (*while on AnyConnect VPN), and the split-include network was a Supernet of a Local Subnet, the local subnet traffic was not tunneled unless a split-include network that exactly matches the Local Subnet was configured. ...

Latest activity: Jun 29, 2018

View Bug Details in Bug Search Tool Login Required

Why Is Login Required?

Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

Full Description (including symptoms, conditions and workarounds)
Status
Severity
Known Fixed Releases
Related Community Discussions
Number of Related Support Cases

Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.

Learn More About Cisco Service Contracts

Preview Tool