Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
313
Views
0
Helpful
1
Replies

VPN-to-VPN communication

iholdings
Level 1
Level 1

‎10-02-2003 11:41 AM - edited ‎02-21-2020 12:48 PM

Hello,

I have a site-to-site VPN that terminates on the outside corporate PIX interface. When needed, the remote site can pass into the corpoarte network and go out another router to an external host. We have reworked our connection to that host so that hosts on our inside network access it through the DMZ port on the PIX.

Is it possible to redirect the remote site VPN traffic out the DMZ port for connection to the external host?

Labels:
0 Helpful
1 Reply 1

awaheed
Cisco Employee
Cisco Employee

‎10-05-2003 10:38 PM

Hi Holdings,

Two things to keep in mind when designing VPN's on the PIX:

1. You can never bounce a packet of a PIX interface, hence PIX doesn't do any redirects for packets out the same interface.

2. As long as we have a Route for the packets terminating on the Outside, to go to the DMZ interface, we should be fine.

Regards,

Aamir Waheed,

Cisco Systems, Inc.

CCIE#8933

-=-=-

0 Helpful
Customers Also Viewed These Support Documents