Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I recently inherited management of a Cisco PIX 515E Firewall running IOS version 6.1(4). The PIX has very broad ACL's for NAT.They include:access-list ipsec permit ip 10.2.1.0 255.255.255.0 10.10.100.0 255.255.254.0access-list nonat permit ip 10.2.1...
Hello.I have a Cisco PIX 501 with a 50 user license. I have been asked to setup a site-to-site VPN with another firewall.My issue is that the other site is requesting that I NAT the device they want to communicate with (only 1 host) with the same IP...
These ACL's are used to "match" traffic for the VPN's:crypto map transam 3 match address TPIMilfordaccess-list TPIMilford permit ip 10.2.1.0 255.255.255.0 10.1.0.0 255.255.0.0crypto map transam 4 match address TPIGAPaccess-list TPIGAP permit ip 10.2....
Thank you for the reply.In order to avoid losing access to the PIX, it's approximately 300 miles away, I need to confirm the order of commands:The 10.2.0.0/24 network is inside the PIX:ip address inside 10.2.1.1 255.255.255.0Here are the steps as I s...
The problem is that the other side will not allow me to use an RFC 1918 address. They want me to NAT the private IP address of the server 192.168.1.10 to the public IP address of the firewall.
I am having a similar issue. I have a Cisco PIX 501 that already has several site-to-site connections established.I need to establish an additional VPN to a device that already has a connecton that uses the IP addresses on my LAN interface. Is ther...
