*** Continue from previous post.***
I also have access list on the remote server s0 with
Access list 101 permit tcp eq www
Access list 101 deny ip any any
#Remote router s0# IP access-group 101 in
My question is do I need to have an access-list to permit the return packet at either end of the s0 interfaces. For example:
at the local router:
Access list 100 permit icmp
Access list 100 permit tcp eq www
Access list 100 deny ip any any
#local router s0# IP access-group 100 in