Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ipsec LAN to LAN VPN with outbound rules

Hi,

I have a LAN to LAN VPN between two v7.04 ASA's. One ASA also has an internet connection on the outside interface, the vpn comes in on another interface and then the inside is on another. The question i have is that i have outbound rules applied to the inbound of the inside interface to restrict local users access on the internet. I have found that i have had to create an ACL permitting IP from the local subnet out to the remote site VPN on this ACL also. I have sysopt connection permit-ipsec configured at both ends but it seems that i still need the rule on the inside interface at the main site. I have stated the match address rule as well as the nat0 rule, but cannot understand why i would need the rule on the inbound ACL of the inside. Any help would be appreciated.

1 REPLY
Silver

Re: ipsec LAN to LAN VPN with outbound rules

125
Views
0
Helpful
1
Replies
CreatePlease login to create content