I have setup a PIX515E with ACLs for VPN RA. I am now trying to setup a VPN to L2L. I have gone through the documentation etc and double and triple checked everything. However when I ping from my internal machine to the VPN network I get this in my syslog
Deny icmp src inside:18.104.22.168 dst outside:22.214.171.124 (type 8, code 0) by access-group "Outbound"
My VPN ACL is configured on my crypto and I have another for nonat.
The Outbound ACL group is for standard traffic passing from my inside interface into the PIX. Do I also have to add enteries into here for the VPN network...
This would be 3 ACL's then for VPN L2L which is OTT surely ?? Or is there another reason ??