[VPN] Cisco PIX Site-to-site IPSec VPN tunnel and access-lists
Joshua Vince
joshv at bcgsys.com
Sat Sep 14 23:06:09 EDT 2002
Using the access-lists you set up to define interesting traffic. In
other words, instead of making those access lists cover whole network
ranges, do something like:
access-list VPNTraffic permit ip host 192.168.1.15 host 172.16.1.25
and if you want to only allow certain traffic, you can do that too with
eq etc.
Josh
-----Original Message-----
From: Sergey Esin [mailto:sergey.esin at orcsoftware.spb.ru]
Sent: Friday, September 13, 2002 10:44 AM
To: vpn at lists.shmoo.com
Subject: [VPN] Cisco PIX Site-to-site IPSec VPN tunnel and access-lists
Hello,
I have Cisco PIX 506e (software version 6.2) and Cisco 515 Lan-To-Lan
VPN with preshared
key set up. So I have unlimited access between VPN-connected networks.
My configuration is very similar as show at
http://www.cisco.com/warp/public/110/38.html
How can I restrict access between VPN-connected networks?
Thanks,
Sergey
_______________________________________________
VPN mailing list
VPN at lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/vpn
More information about the VPN
mailing list