Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2517
Views
0
Helpful
2
Replies

Site to Site VPN access List

ThomasMull9000
Level 1
Level 1

‎03-26-2012 09:01 AM

Hello Guys

i created site to site vpn connection its working fine and its perfect.

here is my scnerio

Site A

Public - 155.155.155.20

private - 192.168.1.2 /24

SITE B

public 155.155.155.10

private 192.168.2.2 /24

So now i am in a site A , so site B can access to site B private address 192.168.1.2 , he can ping , telnet , ftp every thing

so  i want that he can one use SMPP service and deny all other service form Site B

how i can do that please

Labels:
0 Helpful
2 Replies 2

cadet alain
VIP Alumni
VIP Alumni

‎03-27-2012 12:36 AM

Hi,

I suppose you configured the L2L VPN using crypto map so in this case all you have to do is modify your crypto ACL to just permit the service you want to use on site B from site A.

Regards.

Alain

Don't forget to rate helpful posts.
0 Helpful

ajay chauhan
Level 7
Level 7

‎03-28-2012 05:36 AM

You can block access on by putting simple ACL on inside interface on Site B. Once packet is denied on inside ACL will not be processed by crypto.

Thanks

Ajay

0 Helpful
Customers Also Viewed These Support Documents