Hi, I've got a LAN 2 LAN VPN running between the main site (Cisco ASA) and the remote site (Linksys RVS4000) and I cannot figure out how to apply a filter to the tunnel group without killing all traffic on the tunnel. I created a simple access list on the ASA to do this:
access-list BlockRemoteLAN extended deny ip any any
I also tried a version of this where I only allowed traffic from local LAN subnet to any and everything else was implicitely denied.
What is the deal? I thought the filter applied just as a remote-access filter does!
I appreciate any help!