Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I'm configuring environment according to attached picture. In this infrastrucure will be blade servers with teaming NFT, so only one network card will be up.Could you please advice me the best spanning tree design for this infratructure?Thank you ...
Hi,I have 2 Cisco Pix 515E. Both are on the same subnets.Cisco1 has internal IP 10.0.0.1 and Cisco2 10.0.0.2. Internal servers have default gateway on Cisco1.When I establish VPN to Cisco2, connect to internal servers doesn't work due to routing.When...
Hi,I have Cisco Pix 515E,7.2(1) with two networks - inside and dmz. Communication between these network is NATed. In inside is Windows domain called GRP. In dmz I have some workstations which need to be domain member of GRP. Is it any possibility to ...
Hi,I have Cisco PIX 515E(8.0.3) and Cisco 5520(8.0.4). Between these devices I made L2L VPN.Behind Pix1 is LAN 192.168.10.0/24Behind Pix2 is LAN 10.11.13.0/24Do I need outside interface ACL's to communicate these LAN's?Or it's enough to configure cry...
Hi,I have 2 Cisco Pix(Pix1, Pix2) 515E(8.0.4). Between these devices exist L2L VPN, which are configured on outside interfaces. On Pix2 I configured remote access VPN on outside interace, too.Is it possible to reach LAN behind Pix1, by using remote a...
Thanks, very helpful document. There is one very important information for me:NoteActive Directory functionality is not supported over a router that has Network Address Translation (NAT) enabled. The configuration recommendations in this paper apply ...
Thanks.I have no problem to define ACL. The main question was about windows domain. I don't know if active directory requires anything special to allow on pix.Or it is enough to allow standard windows ports - 138, 139, 445?Vladislav
So, if I have "sysopt connection permit-vpn" enabled, access control inside L2L VPN is only done with crypto map access list?Because this doesn't work for me. I must allow communication from 10.11.13.0/24 to 192.168.10.0/24 in interface ACL(I can see...
Thanks, it looks good.I have some subquestion.1. Could you please explain me this statement?nat (oustide) 1 140.40.30.0 255.255.255.0 ( PAT for RA vpn for internet access if u r doing full tunnel)It is therefore, I need to translate RA pool to 172.27...
