I'm trying to build a LAN-2-LAN ipsec vpn. I know I need an acl to specify interesting traffic, but every acl example I can find just uses the blanket "permit ip". I'm wanting to build a vpn based on specific tcp/udp ports. If I build the acl using specific tcp/udp ports, do I have to include any protocols or ports for the vpn tunnel itself? Does someone have an example of a vpn acl that specifies ports? Thanks!
I have this problem too.