Site-to-Site VPN - ACL question

From: Vazman@aol.com
Date: Tue Dec 09 2003 - 18:44:17 GMT-3

• Next message: Routing: "RE: Network traffic generator software"
• Previous message: George He: "RE: Network traffic generator software"
• Next in thread: CXP Peter: "Re: Site-to-Site VPN - ACL question"
• Maybe reply: CXP Peter: "Re: Site-to-Site VPN - ACL question"
• Maybe reply: Steven A Ridder: "RE: Site-to-Site VPN - ACL question"
• Maybe reply: asadovnikov: "RE: Site-to-Site VPN - ACL question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hello,

I have a question..

10.100.10.0/24--Router1--INTERNET--Router2--10.100.20.0/24

We have a site-to-site VPN over the Internet between two Cisco routers and are using private addressing on the ethernet. An inbound ACL is applied on the serial interface of both routers. On R1 do we need to permit the ethernet segment of R2?
I was almost positive that we dont have to..as I would imagine that all traffic between the two LANs goes through the VPN tunnel.

Thanks

• Next message: Routing: "RE: Network traffic generator software"
• Previous message: George He: "RE: Network traffic generator software"
• Next in thread: CXP Peter: "Re: Site-to-Site VPN - ACL question"
• Maybe reply: CXP Peter: "Re: Site-to-Site VPN - ACL question"
• Maybe reply: Steven A Ridder: "RE: Site-to-Site VPN - ACL question"
• Maybe reply: asadovnikov: "RE: Site-to-Site VPN - ACL question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Jan 03 2004 - 08:25:38 GMT-3