07-01-2011 08:03 AM
If you have a headsite with multiple EZVPN clients (PIX 501 & 515) connected in a star configuration can you have one remote site connect to another remote site using the intra-interface command and modifying the encryption domain on the EZVPN Server?
Solved! Go to Solution.
07-01-2011 09:53 AM
You are correct.
If your EzVPN server is an ASA the only thing you need to do to accomplish this setup is add the traffic on the split tunnel and the command same-security-traffic permit intra-interface this should allow your EzVPN clients to communicate.
07-01-2011 09:53 AM
You are correct.
If your EzVPN server is an ASA the only thing you need to do to accomplish this setup is add the traffic on the split tunnel and the command same-security-traffic permit intra-interface this should allow your EzVPN clients to communicate.
07-01-2011 11:32 AM
The server is a PIX515 running 8.0(2), will this work?
07-01-2011 11:36 AM
Yes it should work just fine if the PIX is running 8.x
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide