Hi, I have a question regading a cvpn3005 dmz setup. I have two locations each with a 2610, pix-515e and a cvpn3005. Is it possible with the equipment that I currently have to allow for communication between the DMZ's at each end?
I'm afraid your question is not too clear. Are you trying to setup a IPSec tunnel betwen the two sites to protect DMZ to DMZ traffic. If I got that right, the answer is yes. You can set up a lan-to-lan IPSec VPN between the two PIX firewalls and specify the DMZ to DMZ traffic as interesting. PIX-to-PIX IPSec configuration examples are available at http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Internetworking:IPSec&s=Implementation_and_Configuration
Learn, share, save
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
