Pix Routing Question

Unanswered Question
Jul 31st, 2007
User Badges:

This is what i am trying to achieve.


We have 2 Internet T-1's

PIX 515E UR (6.3.5)

6 Interfaces and VPN Card


Catalyst 2950 8 Port not configured yet... < NEWBIE here on this

Plugged into VOIPONLY and INSIDE ip on inside only..


Phone Switch using VOIP

########################


1st T-1 65. strickly for VOIP only use about 250k of the T-1

Phone Switch Sits here outside the PIX


2nd T-1 OUTSIDE INTERFACE. Is for all VPN and Internet.


We have about 15 Remote offices connecting Via Pix 501.

All with IP Phones


Goal.

I would like to make this config.


1st Interface REMOTEOFFICE 65.x

2nd Interface OUTSIDE 151.x

3rd Interface DMZ 10.10.10.x

4th Interface VOIPONLY 192.168.200.x

5th Interface INSIDE 192.168.1.X


Would like to put phone switch in the VOIPONLY .

and allow everyone use voip over the vpn.


Have all the 501 Connect to REMOTEOFFICE Interface for VPN and have access to VOIPONLY and INSIDE.


Have all the 515 Connect to OUTSIDE interface for VPN and have access to

VOIPONLY and INSIDE


When i try to do this a get


PIX 501

VPN Peer:ISAKMP: Peer Info for REMOTEOFFICE/500 not found - peers:0


On the Main Pix 515 (6.3.5)

I get this error


Crypto_isakmp_process_block: remoteDynamicIP/500 REMOTEOFFICE spt:500 dspt:500

VPN Peer:ISAKMP: Peer Info for remoteDynamicIP/500 not found - peers:0


My gut tells me that it is routing the traffic threw the OUTSIDE interface rather than the REMOTEOFFICE Interface


Anyone have any IDEARS...

yes I am from jersey we add and R to everything....





Thanks for any pointers or solutions.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion