What is the best way to restrict traffic for clients who are VPN'ing to the server using the cisco vpn client. I want to be able to restrict them to tcp 3389 only. I try to add that to the spit tunnel acl, but no luck. Any ideas would be great :) Thanks, Jason