Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

adding access list for site to site tunnel on cisco asa

Hi all, I have created a vpn tunnel on my asa to another site, I know there is the option for the tunnel to bypass access lists,"sysopt", but I want to apply an access list to the tunnels, where do I apply this list using the gui. is it under firewall tab, or the vpn tab then acl manager ? also how do I apply this access list to the tunnel, or do I not do that ?

1 REPLY
Green

Re: adding access list for site to site tunnel on cisco asa

Carl,

You can leave the sysopt in and create a vpn-filter. This is located in the group policy. The other option is to remove the sysyopt and write the access in your regular interface acls. This would be done in the config -> firewall -> access rules/policy.

112
Views
0
Helpful
1
Replies
CreatePlease to create content