Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

LAN to LAN tunnels without internet access

Hi Guys,

I have been asked to create a tunnel between 2 end points but the customer does not want anything public. Here are the details.

First peer: an ASA

Inside = 10.60.60.0/24

Public = 69.69.69.10

Second Peer: an 871 router

Inside = 10.200.10.0/24

Public = 79.79.79.10

End result should be that the 10.200.10.0 network does not need access to the internet; this network only needs to reach the 10.60.60.0 network via the tunnel

How do I get this done?

  • Other Security Subjects
2 REPLIES
Silver

Re: LAN to LAN tunnels without internet access

access-list inside permit ip 10.200.10.0/24 10.60.60.0/24 log

access-list inside deny ip any any log

access-group inside in interface inside

CCIE security

New Member

Re: LAN to LAN tunnels without internet access

I beleive this will be done at the ASA right?

what about at the IOS router?

118
Views
0
Helpful
2
Replies