Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
746
Views
0
Helpful
2
Replies

IPSEC out the same interface?

mike.butorac
Level 1
Level 1

‎10-05-2006 09:17 AM - edited ‎02-21-2020 02:39 PM

Hi,

I need to setup a path from a Check Point to a PIX 506 to a Cisco SOHO91 (12.3(8)). I do not want to go direct from the Check Point to the SOHO because there are many more sites that will need the same solution.

Anyway, the basic question is this: The IPSec traffic for the SOHO coming from the Check Point will enter and leave the PIX through the same interface. It's not working now, and I am wondering if it is even possible to do what I am trying? I recall that some firewalls will not pass traffic out the same interface the traffic arrived on.

Thanks,

Mike

Labels:
0 Helpful
2 Replies 2

pmajumder
Level 3
Level 3

‎10-05-2006 11:42 AM

Hello,

Only Pix code 7.x, and above will allow traffic to enter and leave through the same interface (known as IPSec Hairpinning). Unfortunately the PIX 506 will not support 7.x code.

Regards

Pradeep

0 Helpful

mike.butorac
Level 1
Level 1
In response to pmajumder

‎10-05-2006 02:51 PM

Thanks!!

0 Helpful
Customers Also Viewed These Support Documents