Pix Routing Question

Unanswered Question
Jul 31st, 2007
User Badges:

This is what i am trying to achieve.

We have 2 Internet T-1's

PIX 515E UR (6.3.5)

6 Interfaces and VPN Card

Catalyst 2950 8 Port not configured yet... < NEWBIE here on this

Plugged into VOIPONLY and INSIDE ip on inside only..

Phone Switch using VOIP


1st T-1 65. strickly for VOIP only use about 250k of the T-1

Phone Switch Sits here outside the PIX

2nd T-1 OUTSIDE INTERFACE. Is for all VPN and Internet.

We have about 15 Remote offices connecting Via Pix 501.

All with IP Phones


I would like to make this config.

1st Interface REMOTEOFFICE 65.x

2nd Interface OUTSIDE 151.x

3rd Interface DMZ 10.10.10.x

4th Interface VOIPONLY 192.168.200.x

5th Interface INSIDE 192.168.1.X

Would like to put phone switch in the VOIPONLY .

and allow everyone use voip over the vpn.

Have all the 501 Connect to REMOTEOFFICE Interface for VPN and have access to VOIPONLY and INSIDE.

Have all the 515 Connect to OUTSIDE interface for VPN and have access to


When i try to do this a get

PIX 501

VPN Peer:ISAKMP: Peer Info for REMOTEOFFICE/500 not found - peers:0

On the Main Pix 515 (6.3.5)

I get this error

Crypto_isakmp_process_block: remoteDynamicIP/500 REMOTEOFFICE spt:500 dspt:500

VPN Peer:ISAKMP: Peer Info for remoteDynamicIP/500 not found - peers:0

My gut tells me that it is routing the traffic threw the OUTSIDE interface rather than the REMOTEOFFICE Interface

Anyone have any IDEARS...

yes I am from jersey we add and R to everything....

Thanks for any pointers or solutions.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion