Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Network layout:VPN 3030 in parallel with PIX 520 6.0(1)3030 split into internal, publicPIX split into internal, dmz and public3030 and PIX both connected on internal side to CAT 6506 with L3Problem:If I connect to the 3030 using a VPN client (3.0) fr...
I'm trying to establish a W2K pro PPTP tunnel through a PIX out to an external Multi-homed W2K server (across public internet). When I initiate the client (secure side of PIX) it contacts the external server and begins to authenticate but eventually...
Well right now I'm going to forget the internal client configuration because I don't want to short-circuit our DMZ and bring a direct connection straight through. I'm going to try a Lan-to-lan connection using our 3030. I've initiated lan-to-lan wi...
jp,I thought the PIX had implicit permit all for outbound connections initiated from the inside (secure leg) and automatically allowed the reply to pass back through as long as the reply packet was good. Implicit deny all is only applied to connecti...
Well - thought that might be the issue but I can't even ping the inside interface of the PIX through the 6506 when using different subnets (other than internal address range). I can ping other internal IP addresses just not the PIX. I do have routing...
doh! I should have kept looking. A previous post ansered this question for me I think. PAT is the issue.Let me know if you have any ideas on a work around ...Thanks,Ryan
