Hi, I'm trying to configure ACLs to restrict the network access for remote access users (L2TP/IPscer VPN).
I'm applying an vpn-filter to the group policy
group-policy DfltGrpPolicy attributes
wins-server value 192.168.128.19
dns-server value 192.168.128.19
vpn-filter value VPN
If I put an "permit ip any any" statement in the VPN filter I can connect correctly through the VPN connection. But if I delete the permit ip any any and limit the access to some servers and ports I can't establish the vpn connection, so it looks like this filter works before establishing the connection
I can't see anything in the ASA log
What ACL's I need? How can I restrict the network access?