Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

access lists for vpn site to site

Hi all

Quick question, if I set up an office with a asa to my head office using a site to site tunnel, and i only want users to go across the tunnel and not be allowed internet,

whats the best access rule to set up, would it just be source as remote office and destination to the remote subnets in my HQ ?

cheers

Carl

1 ACCEPTED SOLUTION

Accepted Solutions

access lists for vpn site to site

Hi Carl,

Yes. Supposingly your flows that should be tunneled are initiated only from remote Office to HQ , the source Remote Office and Destination HQ.

Dan

2 REPLIES

access lists for vpn site to site

Hi Carl,

Yes. Supposingly your flows that should be tunneled are initiated only from remote Office to HQ , the source Remote Office and Destination HQ.

Dan

New Member

access lists for vpn site to site

I gather I will need to de-tick the box so the traffic going over the vpn doesnt bypass the access lists ?

or will i need to create a vpn filter ?

294
Views
0
Helpful
2
Replies