Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
514
Views
0
Helpful
2
Replies

Basic VPN Configuration question.

BRUNO WOLLMANN
Level 1
Level 1

‎09-10-2001 08:47 PM - edited ‎02-21-2020 11:24 AM

Why do the configuration examples have multiple access-list statements that are identical? This example is from http://www.cisco.com/warp/public/110/pixhubspoke.html

access-list 120 permit ip 10.1.1.0 255.255.255.0 10.2.2.0 255.255.255.0

access-list 100 permit ip 10.1.1.0 255.255.255.0 10.2.2.0 255.255.255.0

nat (inside) 0 access-list 100

Why not just use access-list 120 in the NAT 0 statement and omit the ACCESS-LIST 100 statement?

Labels:
0 Helpful
2 Replies 2

lisa.hall
Level 2
Level 2

‎09-13-2001 12:56 PM

On the right pane of that document is a place for your comments. Cisco’s TAC reads and handles those comments (I’ve actually submitted an error this way so I know) so you should fill that form out and let them know your concerns.

0 Helpful

r-simpson
Level 3
Level 3

‎09-17-2001 07:34 AM

I think they did it that way to to illustrate that the NAT & IPSEC processes both use acls & are separate (though inter-related) processes. Either way is okay.

0 Helpful
Customers Also Viewed These Support Documents