Surprised with connection not matching acl

Hello all

I have a tunnel set-up on my Cisco 1760, with static IP endpoints and access list applied in the crypto map. I dont know the remote VPN endpoint equipment.

The acl states "permit ip 192.168.202.0 0.0.0.255 192.168.28.0 0.0.0.255" but I saw with the "sh crypto ipsec sa" that the remote network

192.168.202.0 is accessing not only the allowed network but also a different one on my site.

Is there a way to control that ?

Thanks

Jaime

Reply to
Jaime
Loading thread data ...

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.