Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
362
Views
0
Helpful
2
Replies

PIX 515 501 LAN to LAN VPN

kene1012005
Level 1
Level 1

‎02-20-2005 04:00 AM - edited ‎02-21-2020 01:37 PM

I have a PIX 515 (Central) with several internal networks. I want to connect a PIX 501 (Remote) with a dynamic IP address to the 515 as a LAN extension. We currently have VPN clients connecting to the 515.

The 515 is on 192.168.10.0/24 network. The servers I want to talk to are on the 192.168.1.0/24 network.

The 501 is on the 192.168.51.0/24 network.

What network address should I terminate the tunnel on? 192.168.10.0? or 192.168.1.0/24. Do I need some routes on the PIX?

Thanks

Labels:
0 Helpful
2 Replies 2

thisisshanky
Level 11
Level 11

‎02-20-2005 09:32 AM

I assume 10.0 is on the inside network, 1.0 is on the DMZ of the 515. You should define the traffic for both networks to be tunneled.

On the 501 VPN interesting traffic is as follows.

src addr 51.0 dst addr 10.0

src addr 51.0 dst addr 1.0

On the 515 VPN interesting traffic is as follows

src addr 10.0 dst addr 51.0

src addr 1.0 dst addr 51.0

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful

kene1012005
Level 1
Level 1
In response to thisisshanky

‎02-25-2005 03:58 AM

Thanks, got it to work.

0 Helpful
Customers Also Viewed These Support Documents