!−−− Command that permits IPsec traffic to enter and exit the same interface.
same−security−traffic permit intra−interface
!−−− The address pool for the VPN Clients.
ip local pool vpnpool 192.168.10.1−192.168.10.254 mask 255.255.255.0
!−−− The global address for Internet access used by VPN Clients.
!−−− Apply an address from your public range provided by your ISP.
global (outside) 1 172.18.124.166
!−−− The NAT statement to define what to encrypt (the addresses from the vpn−pool).
nat (outside) 1 192.168.10.0 255.255.255.0
nat (inside) 1 0.0.0.0 0.0.0.0
!−−− Forces VPN Clients over the tunnel for Internet access. Configured under Client VPN group-policy.
split−tunnel−policy tunnelall