Yes.

The really fun bit is when you realise that the same subnet is used on both sides of the tunnel. Then you have to start NATing stuff.

Yeah, we are good that way.  All our sites are all already connected, I'd just like to get them using local internet.

Yes, I think it should work... do you have different subnets at each site?

I sure do!  I didn't get very far with it yesterday because I was lazy, I'll see what I can accomplish today.

Alrighty, let us know if you need a hand.

Edit: just had a thought about DNS, do you have a DNS server at each site? If not, you'd have to set your main DNS server as the first, which would add a tiny bit of network load and potential delay in name resolution if the VPN goes down.

aye I do, each site has a dc to aid in log ons, do dhcp and dns.

No idea if I've answered your last question or not.  At our remote locations I have 870's and here at the main office I replaced the 870 with a RV042G.

If I attached my config could someone help me split it?

I do need a hand. If I post my config dump could you try to help me figure out how to set up the split DNS?

I'd say don't post it on a public website.. but yeah, happy to help  ;-)

I could sanitize it, or I can upload it to dropbox and share it with you?  thanks a bunch for the time and help!

Sanitise it. Then I can have a look too.

Will do!  Thanks!

Ok here it is. I think I removed anything that could be of any interest.

The remote locations are 870's.  This is pretty much the config that's been on them since whoever set them up did it.

Do any of you know if it's possible to make an Eth port a WAN port?  I can do it with my router at home but it doesn't speak Chinese like this one.  If I can get dual WAN on this router I will take the RV042 out of service, I don't think it's a very good router.  I've attached a pic of the router.  It's an 870. 

Probably not with something like that. The 4 ports will be a simple Layer 2 switch with no routing capability, meaning they'll all have to be on the same subnet.

So I wonder how I can do it on my Asus?

What's the Asus model? I'd guess it's a Layer 3 switch inside meaning it has the capability.

RT-N66U

Yeah, looks like that got Dual-WAN capability with a firmware update. 

I did find this for your Cisco:

http://www.gossamer-threads.com/lists/cisco/nsp/107630