PIX 515E Routing 2 internal networks

kashif.islam1 · ‎01-20-2016

Hi All

I have Pix 515E firewall and cisco 2950 layer 2 switches. can two separate internal networks can be connected through single pix firewall. One for internet and other for site to site VPN

Philip D'Ath · ‎01-20-2016

You can plug the Internet into one interface, one internal network into another interface, and the second internal network into another interface (three interfaces in use).

kashif.islam1 · ‎01-21-2016

Hi But as I have only one Leased line with single gateway will the traffic be able to go through both networks once a site to site VPN is created and connection established.

thanks

Philip D'Ath · ‎01-21-2016

Yes as long as both networks have unique IP addressing.

kashif.islam1 · ‎01-22-2016

I have cisco pix firewall with OS 6.3.It has 3 lan cards. I have to configure site to site VPN between company A and B. For example I have two private IP address range 192.168.0.0

and 172.16.0.0. 172.16.0.0 is being used for site to site VPN. 192.168.0.0 needs full internet access. I have only one outside link. the problem is when we create site to site VPN, then the outside IP will be used for VPN tunnel. then how will my 192.168.0.0 will access internet. either through VPN tunnel or directly go to outside. The reason for two IP private IP address is 192.168.0.0 is in conflict with company B.

send me the configuration on how to do it

Thanks

Philip D'Ath · ‎01-22-2016

I wont be able to help you with this one. I haven't used 6.3 software in a very very long time (9.x is current version). The NAT commands are all different, and I can't remember back that far. Perhaps someone else can remember.

If you were using much newer software I would direct you to this link describing how to do it.

https://supportforums.cisco.com/document/12612201/configure-vpn-policy-nat-between-2-asa-overlapping-networks