05-24-2002 04:17 PM - edited 02-21-2020 11:46 AM
I using this configuration, cant establish VPN tunnel trough to ISP, but is not possible out to internet
05-26-2002 11:16 PM
This is expected if you don't configure split-tunnel option of vpngroup command. see:
from:
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/ipsec/commands.htm#xtocid185914
Use the vpngroup split-tunnel command to enable split tunneling on the PIX Firewall. Split tunneling allows a remote VPN client simultaneous encrypted access to
the corporate network and clear access to the Internet. Using the vpngroup split-tunnel command, specify the access-list name to which to associate the split
tunnelling of traffic. With split tunnelling enabled, the PIX Firewall downloads its local network IP address and netmask specified within the associated access-list to
the VPN client as part of the policy push to the client. In turn, the VPN client sends the traffic destined to the specified local PIX Firewall network via an IPSec
tunnel and all other traffic in the clear. The PIX Firewall receives the IPSec-protected packet on its outside interface, decrypts it, and then sends it to its specified
local network.
for a sample config, pls. see:
http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_60/ipsec/exvpncl.htm#xtocid281795
hope this helps,
Vijay
05-31-2002 03:53 PM
Thanks by responding, exactly with its informacion solve the problem.
best regards.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide