• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 208
  • Last Modified:

Blocking private addresses on the external interface question

If i create an ACL on my border routers to prevent private IPs from coming in, will this have any affect on VPNs? We have several site to site VPN tunnels coming through the router and terminating in an ASA. Just want to make sure

2 Solutions

It shouldn"t.
It will not, as long as it is an inbound filter on the external interface. The VPN traffic is in tunnel mode so is fully encapsulated. If it gets to and from there over the internet, it will not be blocked by the Martian Filter.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now