Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

One Way Tunnel Pix to Pix vpn

Is there a way to only allow traffic in one direction using 2 Pix 506e's?

I would like one site to be able to initiate traffic with the other but not in the opposite direction.

1 REPLY
Silver

Re: One Way Tunnel Pix to Pix vpn

In order to have the VPN tunnel be initiated only from one end, configure the one end of the connection as originate-only with the originate-only keyword in the crypto map entry, and the remote end with answer-only keyword. Add the line crypto map outside_map 20 set connection-type originate-only and crypto map vpn_map 20 set connection-type answer-only respectively. Refer URL http://www.cisco.com/en/US/customer/docs/security/asa/asa72/command/reference/c5_72.html#wp2069381

248
Views
0
Helpful
1
Replies