When configuring a crypto map configuration, I wanted a bit of a clarification on what exactly the match address command does.
Which is it?
A) Match address command is used to determine what traffic is "interesting" only when it comes to tunnel establishment. Once the tunnel is up, any traffic that matches the route will go through the tunnel and traffic is not matched against the ACL specified in the match address command.
B) The match address command is used to determine the "interesting" traffic for tunnel establishment but is also used to specify what traffic goes through the tunnel. Only packets matching the ACL specified in the match address command will go through the tunnel.
Thanks for your answers!