topic Old school command line vs. ASDM GUI in Network Security https://community.cisco.com/t5/network-security/old-school-command-line-vs-asdm-gui/m-p/828933#M958188 <P>I have a VPN tunnel that functions correctly, however, the technical person on the remote end is more comfortable using ASDM. Local device is a PIX 535 w/ver 7.2(2). The remote side is an ASA 5520 w/ver 7.2(1). When the remote side is setup via GUI things do not work. After resetting remote side up using object groups and command line we can get source/destination/service port connectivity. The remote Team wants to do "VPN filters" Is this different from an ACL with source/destination/service? If so can u provide urls for review?</P> Wed, 13 Mar 2019 00:53:35 GMT reramirez 2019-03-13T00:53:35Z Old school command line vs. ASDM GUI https://community.cisco.com/t5/network-security/old-school-command-line-vs-asdm-gui/m-p/828933#M958188 <P>I have a VPN tunnel that functions correctly, however, the technical person on the remote end is more comfortable using ASDM. Local device is a PIX 535 w/ver 7.2(2). The remote side is an ASA 5520 w/ver 7.2(1). When the remote side is setup via GUI things do not work. After resetting remote side up using object groups and command line we can get source/destination/service port connectivity. The remote Team wants to do "VPN filters" Is this different from an ACL with source/destination/service? If so can u provide urls for review?</P> Wed, 13 Mar 2019 00:53:35 GMT https://community.cisco.com/t5/network-security/old-school-command-line-vs-asdm-gui/m-p/828933#M958188 reramirez 2019-03-13T00:53:35Z Re: Old school command line vs. ASDM GUI https://community.cisco.com/t5/network-security/old-school-command-line-vs-asdm-gui/m-p/828934#M958189 <HTML><HEAD></HEAD><BODY><P>Hi Rene</P><P> Following also applies to L2L VPN tunnels. But instead modifying defaultl2l group-policy, ask them to create a new group policy and set the tunnel use this policy</P><P> tunnel-group xxx general-attrib</P><P> default-group-policy createdgrouppolicy</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080641a52.shtml" target="_blank">http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080641a52.shtml</A></P><P></P><P>Regards</P></BODY></HTML> Fri, 21 Dec 2007 00:07:06 GMT https://community.cisco.com/t5/network-security/old-school-command-line-vs-asdm-gui/m-p/828934#M958189 Alan Huseyin Kayahan 2007-12-21T00:07:06Z