Announcement

Collapse
No announcement yet.

Directional Restrictions in a L2L IPSec VPN

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Directional Restrictions in a L2L IPSec VPN

    Hey there - does anyone know how to restrict access, directionally, in a L2L IPSec VPN where the "sysopt connection permit-vpn" is enabled?

    I have a L2L VPN between datacenter and corporate networks and would like to restrict dataflow to originating only from the Corporate side. IE, if traffic is initiated from the Datacenter to Corporate, I want the traffic denied, but if traffic is initiated from Corporate, I want it permitted (and replies allowed back).

    I'm having difficulting in getting the ACLs to work correctly with the "sysopt connection permit-vpn" ommited, so I wanted to know if there was another way.

    Thanks all

    Robby Morris

  • #2
    Re: Directional Restrictions in a L2L IPSec VPN

    Hi Robby,

    I guess after the time that has passed that no one here has had experience doing this.

    Did you ever find a solution?

    Does anyone else out there have any recommendations for Robby?

    Thanks,
    David Davis - Petri Forums Moderator & Video Training Author
    Train Signal - The Global Leader in IT Video Training
    TrainSignalTraining.com - Free IT Training Products
    Personal Websites: HappyRouter.com & VMwareVideos.com

    Comment


    • #3
      Re: Directional Restrictions in a L2L IPSec VPN

      honesty i never heard from an L2L vpn...
      unless he ment Site-to-Site VPN.
      Marcel
      Technical Consultant
      Netherlands
      http://www.phetios.com
      http://blog.nessus.nl

      MCITP(EA, SA), MCSA/E 2003:Security, CCNA, SNAF, DCUCI, CCSA/E/E+ (R60), VCP4/5, NCDA, NCIE - SAN, NCIE - BR, EMCPE
      "No matter how secure, there is always the human factor."

      "Enjoy life today, tomorrow may never come."
      "If you're going through hell, keep going. ~Winston Churchill"

      Comment

      Working...
      X