Hi,I seem to have baffled TAC with this question:I have a client who has two PIX 501 firewalls. One in DC (pix-a) and one in San Diego (pix-b). They are both connected via a static IPSec VPN. Works well, no problems there. I've also configured bo...
This fixed it. I did not realize that nat-traversal had to be enabled on the SD pix and the DC pix. I was only enabling it on my transit pixes.Thanks muchly for the info.
Actually, I do have NAT traversal enabled on pix-c and pix-d (my transit PIXes). In addition, NAT is not enabled on pix-d, so I'm not sure how NAT traversal will affect this, if at all.