I have an L2L tunnel between an ASA (Pix 7.2) and a VPN Concentrator 3005. The ASA is on the spoke side of our topology. I would like to filter the traffic on the ASA back to the hub network.
I want to be able to connect to any box from headquarters, but only allow servers in our datacenter to ping ips at headquarters.
Is this possible on the ASA? I tried a vpn-filter and an outbound ACL. Either way, when I bring up the tunnel I cannot get across the tunnel.