Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, I have three policies (see below)which make up a crypto map policy on a security device. How does policy 10 match traffic if there is no "match address" statement? This is the peer I wish to edit but don't know how it is matching? Is there a defa...
Thanks Srikant,There appears to be a local and remote subnet listed for source and desintation but I cannot find where this is defined?This is the point of my posting as I cannot locate where it is reading this information.Kind Regards,Gerard
show crypto isakmp sa4 IKE Peer: 100.200.300.1 Type : L2L Role : responder Rekey : no State : MM_ACTIVE -----------FW# show vpn-sessiondb detail l2l filter ipaddress 100.200.300.1Session Type: LAN-to-LAN D...
Hi Srikant,No ACL settings...that is why I was wondering how the traffic is being matched? Is there a default setting?Tunnel config below.tunnel-group 100.200.300.1 type ipsec-l2ltunnel-group 100.200.300.1 general-attributes no accounting-server-grou...
