HelloI have some Catalyst 3560's that has about 10 VLANs setup on them. I want to isolate a few VLAN's from being able to access certain VLAN's but only in one direction. For example: Vlan 100 is 10.10.100.0/24Vlan 200 is 192.168.100.0/24I would li...
I?m getting ready to shutdown and MPLS circuit and cut over to a site to site VPN. The tunnel will be between two PIX?s running 6.3.x. Once I disable sysopt connection permit-ipsec on both firewalls and modify the incoming access-list, users from...
I removed the sysopt connection permit-ipsec and set the ACLs to allow VPN traffic. The VPN works fine but hosts in the DMZ could initiate connections to the remote LAN over the VPN. I entered the deny statement for the DMZ interface:access-list dm...
AcomiskeySo this would still allow hosts at Site A to initiate connections with hosts in the DMZ at Site B over the VPN tunnel and traffic would be able to flow but at the same time, hosts in the DMZ would not be able to initiate connections with the...
