Advanced VPN setup

Unanswered Question
Jun 29th, 2007


I'm trying to add on to an existing VPN between a cisco ASA5510 and a PIX 501. Currently, the vpn is working and traffic from vlan 10 on the asa box can communicate with traffic on the pix box, and vice versa. However, I also need the traffic on another vlan of the ASA to be able to communicate with the traffic behind the PIX... How would be the best way to accomplish this?


I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jon Marshall Fri, 06/29/2007 - 18:16

Hi Jeremy

Your crypto access-list defines which traffic should be sent down the VPN tunnel. So all you need to do is add the extra subnet to the crypto access-lists on both the ASA and the Pix and it should work.

If it doesn't could you post configs (sanitised) with an explanation of what you are trying to do.



alucky8ball Fri, 06/29/2007 - 22:42

Thanks for the response... I actually had the correct commands on both sides for the access-list, but I had left out the nat command for the vlan on the ASA


This Discussion