I have Cisco PIX 515E(8.0.3) and Cisco 5520(8.0.4). Between these devices I made L2L VPN.
Behind Pix1 is LAN 192.168.10.0/24
Behind Pix2 is LAN 10.11.13.0/24
Do I need outside interface ACL's to communicate these LAN's?
Or it's enough to configure crypto ACL
with permit ip ACE's of both side.
Because in official documentation is "The crypto access list does not determine whether to permit or deny traffic through the interface".
But when I disable outside interface ACL's on both devices, the communication still works.