We are using a PIX firewall for site-to-site VPN's. How do we protect our network from the remote network being infected with Blaster without limiting the VPN to certain protocols. Our VPN ACL's are similar to the following:
access-list vpn permit ip 172.16.0.0 255.255.255.0 192.168.1.0 255.255.255.0