I'm currently able to logon to my internal network 192.168.4.0/24 but not able to get my incoming ACS downloadable ACL working. Combination:
PIX605E 6.3(5) - ACS 4.1(1) Build 23 Patch 5.
This is my list:
permit ip host 192.168.4.200 any (where any can be 192.168.5.1 - 10)
deny ip any any
I'm still able to ping other machines in subnet 4 from source address 192.168.5.1
I've already checked this link:
but in my config there is no statement:
sysopt ipsec pl-compatible
The only system option that I use is:
sysopt connection permit-ipsec
Does anyone have an idea?