Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
506
Views
0
Helpful
1
Replies

VPN hub and spoke with Certificates

2d-ruttino
Level 1
Level 1

‎08-15-2001 11:16 AM - edited ‎02-21-2020 11:23 AM

I have a PIX 515 with VPNs to multiple PIX 506s in a hub and spoke format as well as some VPN clients. I am using Certificates for the PIX-PIX VPNs and Certs with XAUTH for the clients. All seems to work fine. I have noticed that when I add a remote PIX I must only edit my "nonat" access list on the HUB PIX to allow the new PIX to communicate through the VPN. I would have thought I would need to add more to the config (peer statements, crypto map instance, etc...) Can anyone clarify what I actually should have to add to the HUB PIX config in this situation?

Labels:
0 Helpful
1 Reply 1

murabi
Level 4
Level 4

‎08-20-2001 02:02 PM

Get all your config’s together and have Cisco’ tac engineers look them over. I think you should be setting up a new tunnel to each spoke site.

0 Helpful
Customers Also Viewed These Support Documents