access lists for vpn site to site

Answered Question
May 16th, 2012

Hi all

Quick question, if I set up an office with a asa to my head office using a site to site tunnel, and i only want users to go across the tunnel and not be allowed internet,

whats the best access rule to set up, would it just be source as remote office and destination to the remote subnets in my HQ ?

cheers

Carl

I have this problem too.
0 votes
Correct Answer by Dan-Ciprian Cicioiu about 3 years 1 week ago

Hi Carl,

Yes. Supposingly your flows that should be tunneled are initiated only from remote Office to HQ , the source Remote Office and Destination HQ.

Dan

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Correct Answer
Dan-Ciprian Cicioiu Wed, 05/16/2012 - 03:50

Hi Carl,

Yes. Supposingly your flows that should be tunneled are initiated only from remote Office to HQ , the source Remote Office and Destination HQ.

Dan

carl_townshend Wed, 05/16/2012 - 05:56

I gather I will need to de-tick the box so the traffic going over the vpn doesnt bypass the access lists ?

or will i need to create a vpn filter ?

Actions

Login or Register to take actions

This Discussion

Posted May 16, 2012 at 2:34 AM
Stats:
Replies:2 Overall Rating:5
Views:290 Votes:0
Shares:0

Related Content