VPN -> PIX -> PIX can't access network on second PIX.

Unanswered Question
Nov 8th, 2007

I have two PIX 515Es connecting to one of them with Cisco VPN Client. The PIX are running 7.2.3 ED with ASDM 5.2.3 and using Cisco VPN Client 5.0.01.06.

I can see nodes on the first PIX network but I can not see the network on the second PIX network. The two PIXes can see each others network no problem and of course or VPNed together.

VPN

|

INTERNET

|

PIX 1

|

INTERNET

|

PIX 2

I am sure it is a simple thing I am missing here but I am fairly new to the PIX environment and could use some help.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
thult Tue, 11/13/2007 - 00:08

Two things:

1. You need to specify the crypto map for the VPN-client to the network behind Pix2.

2. Use "same-security-traffic permit intra-interface" to allow VPN traffic to leave the same interface that it cami in on.

Actions

This Discussion