From: George Hansen (HansenG@xxxxxxxxxxxxxxxx)
Date: Wed Dec 05 2001 - 19:04:50 GMT-3
There's a tunnel set up, and all the traffic that is to be encrypted is going o
ver it. Therefore, all traffic will be from the tunnel source IP (150.100.50.42
) to the tunnel destination (160.200.77.122).
>>> "Lopez, James" <james.lopez@atosorigin.com> 12/04/01 04:22PM >>>
Hi Gang,
I'm missing something on encrypted VPN and I just can't seem to understand
why the access-list on the crypto map is using the Internet IP addresses
instead of the LAN addresses.
(i.e. on lab 15 - access-list 100 permit ip host 150.100.50.42 host
160.200.77.122)
Since the access-list is used to identify which traffic is encrypted, why
isn't it something like:
access-list 101 permit ip 10.0.0.0 0.255.255.255 10.5.8.0 0.0.0.255 on R8?
My current configuration is exactly like the answer sheet and I have
searched the archives and CCO and just can't seem to see the light.
> TIA,
> JL
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 10:32:39 GMT-3