When I create a crypto map, do I still need to create an access list rule for it? Or anything on the cryptomap will be enrypted and I don't need to create an access rule?
if you have "sysopt connection permit-ipsec" in the configuration, IPSec traffics will bypass
the access rule ACL you applied to the
The work around is to disable with "no sysopt
connection permit-ipsec" and let the ACL do
the work for you.