Skip to main content
heyyo
heyyo
Explorer III
February 13, 2026
Question

SSL VPN debug meaning

  • February 13, 2026
  • 1 reply
  • 101 views

Hi Guys,

 

I want to seek assistance on what does this portion of the SSL VPN debug means?

 

SSL VPN debug:

Matched policy (id = xxx) to add ipv4 split tunnel routing address ---> this is the SSL VPN traffic policy

Matched a universal policy (id = xxx) to add split tunnel routing address ---> How about this portion? Where should I look on the configuration for the "universal policy"?

 

Thank you!

 

1 reply

funkylicious
SuperUser
funkylicious
SuperUser
February 13, 2026

i would say ( w/o any documentation to confirm ) that the 2nd one is for the route(s) to be injected into the client based on the SSLVPN Portal setting, Enabled Based on Policy Destination, and the fw policy id has that route which i think would match your 1st one.

"jack of all trades, master of none"
Toshi_Esumi
SuperUser
Toshi_Esumi
SuperUser
February 13, 2026

I'm thinking opposite. I don't think @heyyo is using a portal's "split-network" config but using policies to injects the routes to split. Because we use ONLY portal to split network but in my "diag debug app sslvpn -1" output none of those messages exist. I'm wondering if those id=xxx is identical or not.

Toshi

Terms & ConditionsAccessibility statement