Configuration to reach "outside" subnet

Unanswered Question


I have a PIX 501 with a VPN configured (pool addresses are which enables communication to the "inside" subnet ( - this works fine. Now I want to extend that so that users connected to this VPN can also communicate to machines on the "outside" subnet ( and out to the Internet (via gw Is this possible? Appreciate any help!

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
husycisco Sat, 07/26/2008 - 08:00
User Badges:
  • Gold, 750 points or more

Hello Dan,

You have to permit the traffic that enterst the interface to exit the same interface, which is accomplished by "same-security-traffic permit intra-interface" command. But unfortunately, this command exists in IOS version 7.2 or greater.



This Discussion