I don't know to much about MS Always On VPN but have a question. If a user is at a client site and is trying to access a resource on the clients network that is in a similar IP range as what has been sent to go over the VPN tunnel, what would be the best way for this certain group of users to stop specific IP addresses from going over the tunnel and instead breaking out to use the local network resource?
Would it also be possible to automattically detect when on these networks/sites so when these users are connecting from else where, the IP addresses are then sent back over the tunnel?
I hope the above makes sense. Any advise would be greatly appreciated.