Inscrivez-vous ou connectez-vous pour rejoindre votre communauté professionnelle.
To define interesting traffic. the fine Source & destination will then pass through the tunnel.
You need ACL to specify what source and destination IP address that will be permit/deny passing through your VPN tunnel.
ACL is used as matching mechanism for matching traffic to be encrypted in the VPN tunnel
ACL allows and denies incoming and outgoing connections. It filters unwanted vpn tunnel connections. Only premitted ip can connect to the vpn server through ACL. Since critical systems are connected with VPN, ACL is a necessary part.
Let's say you have a Firewall in Dubai that has3 VPN tunnels. One connected to London,2nd to Australia and the3rd to Egypt.
Now, when the traffic comes to this Firewall, how is it going to know where to send the traffic? London, Australia or Egypt.
That's when the ACL comes into picture.
e.g Sample ACL = Permit traffic From..0.0 To...0 (Dubai-Australia).
When the firewall sees a packet that has source ip from (..0.0) subnet and destination ip from (...0) subnet, it's going to forward it to the VPN interface that is connected to Australia Firewall.
That's basic!
HTH
we need to define an ACL for VPN in order to permit or deny various types of traffic.
thanks for inviting me
Follow up our colleagues' answers.
Avez-vous besoin d'aide pour créer un CV ayant les mots-clés recherchés par les employeurs?