Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
504
Views
0
Helpful
3
Replies

Route VPN Traffic

fsanchez
Level 1
Level 1

‎12-19-2007 10:27 AM - edited ‎02-21-2020 03:26 PM

Hi, I have a PIX 515E with version 7.x. It has two different internet links connected, one is used to get access to Internet from inside and the other I would like to use only for dynamical VPN clients.

How I have to configure this to make the VPN traffic, that comes from the second link go back for same interface? in actual configuration I have a default route pointing to first link.

I need use “same-security-traffic permit intra-interface” command to do this?

Thanks,

Labels:
0 Helpful
3 Replies 3

acomiskey
Level 10
Level 10

‎12-19-2007 10:53 AM

same-security-traffic permit intra-interface will not help in this case since the pix can only have 1 default gateway. You would have to know the source address of the vpn clients to be able to route to them from the second interface.

0 Helpful

fsanchez
Level 1
Level 1
In response to acomiskey

‎12-20-2007 06:06 AM

The problem is that this links are DSL with dynamic IP addressing.

0 Helpful

asoil
Level 1
Level 1

‎12-20-2007 10:57 AM

I think RRI, reverse route injection is the answer to your question.

Antonis

0 Helpful
Customers Also Viewed These Support Documents