Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
726
Views
0
Helpful
2
Replies

ASA VPN traffic exception

Go to solution
Tauer Drumond
Level 1
Level 1

‎01-17-2020 12:32 PM

Hi all,

I have a VPN site-to-site configured sucessully on CISCO ASA

The local network is 192.168.0.0/24 and the remote network is 0.0.0.0 (any)

 

But, now I need that a traffic to a specific destination doesn't enter that tunnel. It can not flow through the VPN tunnel

 

Is that possible? How do I accomplish that?

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎01-17-2020 12:38 PM

Hi,
Modify your crypto ACL that defines the interesting traffic for the VPN, enter a new entry above the existing entry, deny traffic from your local network (192.168.0.0/24) to your new destination.

 

HTH

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Rob Ingram
VIP
VIP

‎01-17-2020 12:38 PM

Hi,
Modify your crypto ACL that defines the interesting traffic for the VPN, enter a new entry above the existing entry, deny traffic from your local network (192.168.0.0/24) to your new destination.

 

HTH

0 Helpful

Go to solution
Tauer Drumond
Level 1
Level 1
In response to Rob Ingram

‎01-20-2020 11:22 AM

Yes, it worked! Thank you

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents