Step 1: ( create names for networks )
names
name < network address > wpn_<name>
same-security-traffic permit inter-interfacesame-security-traffic permit intra-interface
access-list remote_splitTunnelAcl standard permit < network address > < subnet address >
object network WPN_<name>subnet < network address > < subnet address >
access-list acl_NONAT_out extended permit ip object <Local network object group > object < wpn object group>
ip local pool Web×××Pool <network address.100-<network address>.200 mask <subnet address>
nat (inside,any) source static Local-LAN Local-LAN destination static WPN_<name> WPN_<name>
aaa-server <servername> protocol radiusaaa-server <servername> (inside) host < ip address server >timeout 5key <keyname>
web***enable outsidesvc p_w_picpath disk0:/anyconnect-win-2.5.0217-k9.pkg 3svc p_w_picpath disk0:/anyconnect-macosx-i386-2.5.0217-k9.pkg 4svc enabletunnel-group-list enablegroup-policy Web×××Policy internalgroup-policy Web×××Policy attributesdns-server value <dns server >***-tunnel-protocol svcgroup-lock value Web×××AccessProfilesplit-tunnel-policy tunnelspecifiedsplit-tunnel-network-list value remote_splitTunnelAcldefault-domain value <domainname>.localaddress-pools value Web×××Poolweb***svc ask none default svchidden-shares nonefile-entry disablefile-browsing disableurl-entry disable
tunnel-group Web×××AccessProfile type remote-accesstunnel-group Web×××AccessProfile general-attributesauthentication-server-group <radius groupname > LOCALdefault-group-policy Web×××Policytunnel-group Web×××AccessProfile web***-attributesgroup-alias Web××× enable