Configuration
A high-level overview of the configuration steps to set up FQDN based split tunneling feature is shown below.
To configure the FQDN based split tunneling, perform the following steps:
1.Log in to Ivanti Connect Secure administrator console.
2.Select User > User Roles > Role Name > VPN Tunneling > Split Tunneling
Choose the split tunneling mode as Enable.
Split Tunneling Mode Enable
Split Tunneling mode must be enabled for FQDN based Split tunneling.
3.Select Resource Policy > VPN Tunneling > Split Tunneling Networks
Admin can add a new policy or can choose the already defined policy.
4.In the FQDN Resources section, specify the FQDN name.
FQDN Split Tunneling
For FQDN resources wild card domains will be allowed. For more information on format of these rules, see RFC 4592.
Detailed Rule Tab
Select Actions > Use Detailed Rules box.
Detailed Rules Tab
Click on Detailed Rules. The following screen appears:
Detailed Tab FQDN
In the FQDN Resources section, specify the FQDN name. For FQDN resources wild card domains are allowed.
FQDN is not supported on IPv6.
FQDN based split tunneling will not support Dual Stack (both IPv6 and IPv4).
FQDN based split tunneling will not support Traffic Enforcement feature enabled for the respective role.
FQDN based split tunneling with proxy configuration is not supported currently.