Hi,

Describe me briefly about crypto acl on

both side.

What do you mean by both sides in detail?

regards

Salman

no access-list iffcosts_list extended permit ip host 192.168.2.15 192.168.10.0 255.255.255.0

no access-list iffcosts_list extended permit ip host 192.168.2.13 host 10.1.1.20

no access-list iffcosts_list extended permit ip 192.168.0.0 255.255.0.0 host 10.1.6.11

no access-list iffcosts_list extended permit ip 192.168.3.0 255.255.255.0 192.168.10.0 255.255.255.0

no access-list iffcosts_list extended permit ip 192.168.1.0 255.255.255.0 192.168.10.0 255.255.255.0

no access-list iffcosts_list extended permit ip 192.168.2.0 255.255.255.0 192.168.10.0 255.255.255.0

access-list iffcosts_list extended permit ip 192.168.0.0 255.255.0.0 10.1.0.0 255.255.0.0

access-list iffcosts_list extended permit ip 192.168.0.0 255.255.0.0 192.168.10.0 255.255.255.0

no access-list iffcosts_list extended permit tcp 192.168.2.0 255.255.255.0 host 10.1.1.20 eq lotusnotes

on your peer must have mirror crypto acl

access-list peer_list extended permit ip 10.1.0.0 255.255.0.0 192.168.0.0 255.255.0.0

access-list peer_list extended permit ip 192.168.10.0 255.255.255.0 192.168.0.0 255.255.0.0