Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations TouchToneTommy on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Site-to-Site VPN (Limited access to 10 IPs)
- Thread starter userice
- Start date
- Thread starter
- #3
- Thread starter
- #4
We have a site-to-site VPN. I want restrict access over VPN. At this time, We don't need port restrictions
Location1:
outside IP: 205.246.1.x
users at location 2 allow to access 192.168.1.25~26 at location 1
Location2:
outside IP: 76.87.6.y
users at location 1 allow to access 172.22.1.10~30 at location 2
Location1:
outside IP: 205.246.1.x
users at location 2 allow to access 192.168.1.25~26 at location 1
Location2:
outside IP: 76.87.6.y
users at location 1 allow to access 172.22.1.10~30 at location 2
You have an access-list that specifies the traffic to be encrypted and it is located in the crypto map.
object-group network VPN-Host
network-object host 192.168.1.25
network-object host 192.168.1.26
object-group network VPN-Remote
network-object host 172.22.1.10
network-object host 172.22.1.22
*and so on
access-list VPN permit ip object-group VPN-Host object-group VPN-Remote
object-group network VPN-Host
network-object host 192.168.1.25
network-object host 192.168.1.26
object-group network VPN-Remote
network-object host 172.22.1.10
network-object host 172.22.1.22
*and so on
access-list VPN permit ip object-group VPN-Host object-group VPN-Remote
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question