Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
132
Views
0
Helpful
1
Replies

Restrict Site-to-Site VPN traffic to one way

Martijn de Loos
Beginner
Beginner

‎12-11-2015 01:13 AM - edited ‎03-12-2019 12:01 AM

Hello,

We have a site-to-site VPN tunnel setup and functioning properly from our office to the datacenter. However, the datacenter machines are also able to establish connections such RDP and UNC paths to our office desktops. 

I want to restrict the traffic to one way only. I want to be able to allow all traffic from the office towards the datacenter but block vice versa. When I try it with an ACL, I also block office to the datacenter. When I edit the cryptomap, my entire VPN tunnel disconnects. How can I setup a one way traffic flow properly?

Firewalls on both sides are ASA 5510.

Labels:
0 Helpful
1 Reply 1

Tagir Temirgaliyev
Frequent Contributor
Frequent Contributor

‎12-11-2015 10:35 AM

acl on inside interface

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers
Spotlight Award Nomination
Customers Also Viewed These Support Documents