10-26-2001 10:32 AM - edited 02-21-2020 11:28 AM
Does anyone know what is the limitation to do site to site VPN involving PIX ?
Thanks.....!!
11-05-2001 06:33 AM
What limitation do you want to know about? The PIX can do a lot of VPN tunnels.
11-05-2001 10:02 AM
One particular limitation I just ran into is that the PIX (at least the PIX 506) isn't a router. That is, if you have a PIX-to-PIX VPN plus remote VPN clients connecting to one of those PIXs, the remote client can only see the network behind the PIX it connected to -- it can't see the remote LAN of the PIX-to-PIX connection.
Perhaps this isn't a problem for most people who have a single central site housing all network resources, and remote sites/clients don't have any servers. But if you're trying to setup a distributed intranet with remote clients that need access to services on the networks behind multiple PIXs, this is something you might run into.
I guess you need to add a router into the mix to support traffic between remote clients and remote peers, but I haven't got that far yet. If somebody thinks I'm wrong (and no router is needed), please correct me!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide