01-06-2023 05:55 AM - edited 01-06-2023 05:57 AM
"access-list Split-Tunnel extended permit ip host 1.1.1.1 object VPN-Pool"...
My understanding is that it is best practice to make the ASA split-tunnel access list a STANDARD access list, because the destination element in this EXTENDED version of the access list is never queried (it is irrelevant). If this is true, then when troubleshooting I will always ignore the data in the destination element.
Is the destination element in this EXTENDED version of the access list never queried (it is irrelevant)? Please don't confirm if you are not certain. Please also reply with any related relevant thoughts.
Thank you!
Solved! Go to Solution.
01-06-2023 06:17 AM
01-06-2023 06:17 AM
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide