Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
521
Views
0
Helpful
1
Replies

Site-to-Site IPsec VPN & Outside ACL

AJAZ NAWAZ
Level 5
Level 5

‎03-25-2010 10:21 AM - edited ‎02-21-2020 04:34 PM

Order of operation qtn.

When ipsec is terminated on an ISR for site-to-site vpn, is the acl bound to the outside interface invoked before crypto acl or after?

thanks

Labels:
0 Helpful
1 Reply 1

Collin Clark
VIP Alumni
VIP Alumni

‎03-25-2010 11:53 AM

The crypto ACL is not associated with the outside interface, so the ACL on the interface is filters first.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents