03-02-2022 03:38 PM
Hi There,
I need to run only specific traffic inside VPN (for example HTTPS and ICMP). How to do it? i couldn't find solution. This one, looks like different:
its standard IPSec between Cisco Router and Sophos.
thanks
Solved! Go to Solution.
03-02-2022 03:56 PM
set ip access-group in/out under the crypto map.
this can be used to filter the traffic encrypt by ipsec.
03-02-2022 04:20 PM
Yes exactly.
03-02-2022 03:56 PM
set ip access-group in/out under the crypto map.
this can be used to filter the traffic encrypt by ipsec.
03-02-2022 04:17 PM
Thanks!
like that?
crypto map vpnmap 10 ipsec-isakmp set peer 192.168.2.1 set transform-set trans1 set ip access-group 151 in set ip access-group 161 out match address 101
access-list 101 permit ip 10.1.1.0 0.0.0.255 10.1.2.0 0.0.0.255 access-list 150 permit udp host 192.168.2.1 eq 500 host 192.168.1.1 eq 500 access-list 150 permit esp host 192.168.2.1 host 192.168.1.1 access-list 151 permit tcp 10.1.2.0 0.0.0.255 eq telnet 10.1.1.0 0.0.0.255 access-list 151 permit tcp 10.1.2.0 0.0.0.255 10.1.1.0 0.0.0.255 eq telnet
03-02-2022 04:20 PM
Yes exactly.
03-02-2022 07:29 PM
Thanks a lot!!!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide