Have you set the management interface to inside? If not the traffic will always be sourced from the nearest interface to the destination. This would be why you can access it with the outside interface in the vpn traffic set
Dave From: [email protected] [mailto:[email protected]] On Behalf Of Kingsley Charles Sent: 16 October 2009 05:31 To: [email protected] Subject: [OSL | CCIE_Security] Telnet across IPSec connection Hi all I am trying to telnet from the IOS router which is the remote IPSec peer to the outside and inside interface of the ASA. But the Telnet fails. The VPN tunnel is UP. The following are configured: sysopt connection permit-vpn access-list mine permit ip any any access-group mine in interface outside telnet 0.0.0.0 0.0.0.0 outside telnet 0.0.0.0.0 0.0.0.0 inside What is preventing me to telnet? With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
