hey guys, easy stuff here.
-Router 1800 series
-Public IP 220.127.116.11
-Remote router 800 series
-Remote Office LAN 10.66.66.0/24
-Remote Office Public IP 18.104.22.168
Currently, there is a L2L tunnel using IPSec between the 2 networks and those inside LANs can communicate with each other without any problems.
The requirement now is to lock this tunnel down to allow only the following:
-Remote Office LAN (10.66.66.0/24) hosts should not access the internet. In fact, there are only 3 host (10.66.66.200 .201 and .202) and these 3 hosts should only be allowed access to 10.77.77.20 and to 10.77.77.21 on port tcp 9399, and nothing else.
How will this be accomplished?
Thanks in advanced