04-18-2007 10:09 PM
My customer have PIX515E as the vpn server, and have many remote users over the Internet.
So, users vpn in to outside interface.
We as the hosting company, we have another PIX attached to customer network, outside is customer, inside is us. This PIX protect our site of the network from customer.
We vpn client in to our PIX (to inside interface).
Issue is we can't remote control customer remote users (users vpn to cusomer PIX over the internet) from our PC (when we vpn in to out PIX)
We can remore control any server/desk top in there network, even PC/servers in the remote office(conenct through site-to-site VPN)
Is this a PIX limitation,
04-20-2007 05:28 AM
If I'm understanding the question correctly, then you have a default gateway issue. Remote devices must have either a manual route or the default routed device must know the route back to the device originating packets.
04-20-2007 02:07 PM
it was some what similar, customer have many vpn groups, some of the vpngroups has split tunnel ACL, and that ACL didn't had a entry for our vpn IP pool, that's why traffic was not returned.
Issue solved
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide