Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
261
Views
0
Helpful
1
Replies

PIX VPN tunnel

sikkander
Level 1
Level 1

‎04-26-2004 09:35 AM - edited ‎02-21-2020 01:07 PM

Hi all!!

I hv a pix 515E box using which I hv a VPN tunnel over the internet(from the outside interface).Now I want to build another VPN tunnel from the outside i/f to another destn ip.Pl let me know if this is possible & what precautions I need to take to build up this configuration

Cheers

SS

Labels:
0 Helpful
1 Reply 1

ehirsel
Level 6
Level 6

‎04-26-2004 11:58 AM

Yes it is possible, but you have to use the same crypto map id for both connections, just use different sequence numbers to have the pix see them as seperate connections.

When you have one active vpn connection and want to define and activate the 2nd one, insure that the acl that defines interesting traffic is already defined, and add the crypto map commands that refer to that acl and the remote peer before you config the rest of the ipsec crypto map seq. entries. Otherwise you may find that the pix will block all traffic, including non ipsec, until you have done that. I know that pix 6.1, pix 5.2 and 5.3 code had that issue, it may not be present in the newer code.

0 Helpful
Customers Also Viewed These Support Documents