Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
554
Views
0
Helpful
2
Replies

Dual VPN on pix, site to site and remote access?!?

jasonhumes
Level 1
Level 1

‎05-20-2004 04:16 AM - edited ‎02-21-2020 01:10 PM

Hi

I was wondering if someone could direct me to a config document showing how to setup a pix to support both site to site vpn and remote access vpn. I can get both to work on their own, but I'm having trouble getting both working at the same time. Thanks very much.

Labels:
0 Helpful
2 Replies 2

ehirsel
Level 6
Level 6

‎05-20-2004 04:30 AM

This link ought to be what you need.

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094cea.shtml

One thing to look at right away, is are you using two different crypto map names - one for site-to-site and another for remote acess vpns? You can only use one name on an interface at the same time - so what you do is to create seperate sections of the same map.

The other is whether you use config-mode and xauth for remote clients - you use the no-config-mode and no-xauth for the site gateways.

I hope this helps.

0 Helpful

mostiguy
Level 6
Level 6
In response to ehirsel

‎05-20-2004 04:55 AM

Also, the crypto map map_name_here numericalvalue is important - you want your dynamic map to have the highest numerical value so that it is the last one negotiated - site to site connections will success with one of the lower valued (static) maps, and end users will fail on those, but successfully negotiate the higher valued (dynamic) one

0 Helpful
Customers Also Viewed These Support Documents