So I have an ASA with a site-to-site VPN setup to say, remote network 10.10.10.0/24. My inside network is PAT to the local VPN network of 55.55.55.55/32. I can create ACL on the inside interface that affect traffic across the VPN tunnel just fine. ...