Hi all. Right now my site to site vpn between 2 cisco pix firewall are working fine. But i would like to restrict the vpn traffic on both sides. After i have created the accesslist to limit the vpn traffic, should i set "no sysopt connection permit ipsec" for the restriction to take effect? Thks in advance.