LAN to LAN tunnels without internet access

Unanswered Question
Jan 15th, 2008

Hi Guys,

I have been asked to create a tunnel between 2 end points but the customer does not want anything public. Here are the details.

First peer: an ASA

Inside = 10.60.60.0/24

Public = 69.69.69.10

Second Peer: an 871 router

Inside = 10.200.10.0/24

Public = 79.79.79.10

End result should be that the 10.200.10.0 network does not need access to the internet; this network only needs to reach the 10.60.60.0 network via the tunnel

How do I get this done?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
cisco24x7 Tue, 01/15/2008 - 16:47

access-list inside permit ip 10.200.10.0/24 10.60.60.0/24 log

access-list inside deny ip any any log

access-group inside in interface inside

CCIE security

insccisco Tue, 01/15/2008 - 17:05

I beleive this will be done at the ASA right?

what about at the IOS router?

Actions

This Discussion