Restrict site-to-site traffic
Restrict site-to-site traffic
Hi everyone, I have a quick question I hope: whats the best way to restrict certain protocols to pass through a site-to-site tunnel ? Should I edit de ACL which is assigned to the crypto map or should I create a new ACL and assign it to the interface ? Thanks in advance, Ronald
Re:Restrict site-to-site traffic
Hi,Is this on a router or a firewall?If you are using a firewall you can use the vpn-filter commandhttp://www.cisco.com/en/US/products/hw/vpndevc ... 9a87.shtml
Re:Restrict site-to-site traffic
Hi, editing the ACL attached to crypto map will do the trick. Regards. Alain.
Re:Restrict site-to-site traffic
Hi Alain, Thanks for the info. Im gonna try that one. Regards, Ronald