Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 219
  • Last Modified:

Cisco VPN Access-list Map

Ok...so I have a LAN-to-LAN VPN tunnel.

I need to send ALL traffic across the tunnel with the exception of a quasi-dmz subnet that exists just outside the ASA

So my thought is that I can configure the ACL map statement to first DENY traffic destined to the outside subnet then use a 0.0.0.0 255.255.255.255 map statement to send all traffic across the tunnel.

Will that work?
0
willtim
Asked:
willtim
1 Solution
 
Vito_CorleoneCommented:
Your thinking will work. Also make sure your VPN outside IPs are denied in the ACL.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Tackle projects and never again get stuck behind a technical roadblock.
Join Now