I am using 6500s with VPN cards and need to deny certain Voice subnets from being encrypted to all my sites.
For example some sites are
10.252.173.0
10.253.173.0
10.254.173.0
Given that when I keyed denies for each of my sites the VPN came up with a max of 8 deny statements.
I am trying the following:-
deny 10.0.173.0 0.255.0.255 10.252.173.0
permit....etc.
and the logic I assume is does this keep the requirement of all 10.x subnets not being encrypted ?