I have an ASA5520. I have a host I need to block access to for users who come in on a VPN. When they come in they get an IP from the ASA on a unique subnet. Thought it would be easy and I could just block the traffic with an ACL statement on the INSIDE interface, but the traffic still got through. 0 hits on the ACL. I did a syslog and saw the traffic going through the OUTSIDE interface, so I decided to added an ACL statement there and the traffic still got through. Hmmmm Am I missing something? Does the ASA treat traffic on VPN different?
If you can, please be sure to mark this thread as 'answered' for the benefits of others.
Thanks for using the Support Forums.