Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
911
Views
0
Helpful
2
Replies

IPsec ACL

raza
Level 1
Level 1

‎09-22-2004 10:08 PM - edited ‎02-21-2020 01:21 PM

My question can we use ip any any in Ipsec point to point or hub spoke enviroment ? if not why?

Regards

Labels:
0 Helpful
2 Replies 2

jzsides
Level 1
Level 1

‎09-23-2004 07:41 AM

If you do this all traffic coming in or going out of the interface that the crypto map is applied to, will be included in the VPN. Is this your goal?

0 Helpful

raza
Level 1
Level 1
In response to jzsides

‎09-23-2004 09:53 PM

Yes this is the case also pls note I have just seen following:

Book "Cisco Secure Pix Firewall Advanced Exam Certification Guide" page 173

"It is not recommended that you use the permit any any command, because it causes all outbound traffic to be encrypted( and all encrypted traffic to be sent to the peer specified in the corresponding crypto map entry), and it requires encryption of all inbound traffic. With they type of access list. The firewall drops all inbound packets that are not encrypted."

0 Helpful
Customers Also Viewed These Support Documents