09-30-2007 11:16 PM - edited 03-11-2019 04:18 AM
hi,
i have several site to site tunnels to many locations.
can i apply the command "sysopt connection permit-vpn" to one tunnel and leave it disabled for another tunnel ?
thank you
09-30-2007 11:39 PM
Hi Joseph
As far as i know you cannot apply this per tunnel as it is a global configuration command
http://www.cisco.com/en/US/docs/security/asa/asa72/command/reference/s8_72.html#wp1198155
All you do is for the tunnel you want to bypass the access-list on you need to permit all IP for that remote network in your acl.
HTH
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide
Log in to Community