Hello,\r\n\r\nI've been setting up an ASA 5505 with site-to-site VPN, NAT and so on. I have som questions:\r\n\r\n1. I ran the wizard for creating a client VPN, but changed my mind (we use ISA for this instead). There's no "de-wizard" to remove what got added when I ran the wizard, what will I need to remove? For example, a tunnel group named DefaultRAGroup was added which I now can't delete.\r\n2. Currently, my ACLs are permitting everything. For each interface (inside/outside) it says "any any permit tcp/udp/icmp/esp". I understand it's not best practice, but as I'm using NAT between outside (Internet) and inside (local network) it's not completely open, right? What are these ACLs for?\r\n\r\nThanks in advance!