Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
353
Views
4
Helpful
1
Replies

Cisco pix 501: While connected, can we get internet?

bajancanuk
Level 1
Level 1

‎08-05-2005 05:41 AM - edited ‎02-21-2020 12:18 AM

Hello.

We have a consultant, who's telling us, that we can't have internet access, while we connect to our cisco pix 501.

Is this true?

And, if its not true (which I believe), can someone point us to the info I need to verify this, and or the command line that's needed??)

Thank you

William

0 Helpful
1 Reply 1

thebigc
Level 1
Level 1

‎08-08-2005 05:12 PM

William,

Depends on how you're establishing the VPN and the configuration of the PIX. Your consultant may be correct based on the current setup - but that doesn't mean the current setup needs to stay the same.

If you're using a Windows PPTP connection, when the link is established a default route with a better metric is inserted into the host's routing table - this means that the user can no longer send traffic via their normal default route (e.g. to the Internet). There's no admin option available by default to avoid this. One way around it is to use the connection manager admin kit (a win2k3 server optional component) to update the route table on connect - I've found this works quite well in those situations where IPSec can't be used,

If you're using the VPN client (IMHO the better method to use) the PIX needs to be configured with split tunneling and within the profile of the Cisco client needs the option "Allow local LAN access" needs to be selected. If you have Smartnet on your PIX you should be able to download the client for free, if not then you'll need to buy it from a reseller.

HTH,

Colin

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card