Please forgive my ignorance on this, but I'm still trying to get my arms around ASA access lists...
What I'm attempting to do (as you can see by the configs) is restrict access from my DC site (10.10.50.x) to my HOUSTON site (192.168.40.x) to only RSYNC, SSH, HTTP, and ICMP. The tunnel is up and I can access Houston from DC over those ports. However, when I open up other ports as a test on the Houston server (telnet, ftp, RDP, etc) I can get to those from DC, too. I definitely do not want that. I thought I had the access lists configured properly, but clearly I'm missing something.
So the only thing I'd like is for DC to Rsync, ssh, ping, and web to Houston. Nothing else.
Any insight would be appreciated.