I got the solution. Thanks
access-list 103 extended deny tcp host 172.16.1.2 host 172.22.1.2 eq 80
!--- Access list 103 is created for the VPN Filter.
!--- This access list 103 filters/denies the request from the remote host(172.16.1.2)
!--- to the local WEB Server (172.22.1.2).
access-list 103 extended permit ip any any
group-policy filter internal
group-policy filter attributes
vpn-filter value 103
!--- Create the group policy (filter)and specify the access list number
!--- in the vpn filter command.
tunnel-group 10.20.20.1 general-attributes
default-group-policy filter
!--- Associate the group policy (filter) with the tunnel group.