Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

LAN-to-LAN VPN and access list for private networks

Hi,

I have a LAN-to-LAN VPN between ASA boxes connecting to private networks 192.168.1.0 and 10.10.10.0. All traffic between them should be allowed. Do I need to configure an explicit ACL that permits all traffic to be passed from 192.168.1.0 to 10.10.10.0 and vice versa?

Thank you.

Regards,

Alex

1 REPLY

Re: LAN-to-LAN VPN and access list for private networks

Hi Alex,

The inside interfaces, if they have an ACL, will need to include the VPN traffic.

As well, the traffic from one LAN to the other need to be excluded from NAT (that is: added to the NAT 0 ACL).

Check the "Site to Site VPN with PIX" section on the link: http://cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html#anchor6

Please rate if this helped.

Regards,

Daniel

104
Views
9
Helpful
1
Replies
CreatePlease to create content