Hi, I have a PIX 501 behind a router with 2 T1s going to the same ISP. The addresses are in the same subnet. The router just has 1 ethernet connection (which is the default gateway for the PIX 501). Here's my question... in setting up a simple site-t...
Hello,I have a client who wants to convert a remote site from frame relay to a DSL internet connection. He then wants a site-to-site VPN tunnel, but here's the difficult part... he wants the remote site to be able to login across the VPN tunnel into ...
Is it possible to have 2 nat 0 entries for the same interface? For example:nat (vpntest) 0 access-list 113nat (vpntest) 0 access-list 115Hope this is correct. If so, I've answered my two previous questions in regard to implementing 2 VPN's on the sam...
I could use a general guideline for implementing more than 1 VPN using entering isakmp, crypto, and access-list commands. Also, need to know if I need to define an interface for each VPN. Please help!
Hi, I was advised by Cisco tech to avoid using the "alias" command. Instead, use the "DNS rewrite" parameter that is part of the "static" command. (Assuming you're on PIX OS 5.x or better). If you're using PDM, go to the Translations Rules tab, click...
Thanks for your help! There is an additional wrinkle, which I didn't realize at the time of my original posting... Looks like I would be adding the "third" VPN to the outside interface. The first looks like a PIX-to-PIX setup with MANY access-list st...
Thanks, I found that out first hand. I knew it sounded too good to be true!I simply made an ACL for 117, which included both 113 & 115. I then did:nat (vpntest) 0 access-list 117
Hi, we did something similar but BM was behind FW-1. I agree with your management that BM can provide proxy, caching, filtering & authentication VERY well. I would caution that the BM servers better have plenty of RAM and disk space. You should have ...
Hi, I plan on upgrading a PIX 520 soon, may I send you an email to get similar info./code as you mentioned above? My email is: taikenisonsmith@yahoo.comThanks!Tai
