pix 501 vpn gateway behind alcatel speedtouch modem

Unanswered Question
Aug 3rd, 2008
User Badges:

Hello,

The speedtouch modem connected to the internet and the LAN side has 10.0.0.0/24 with 10.0.0.138 as LAN interface ip address. The pix firewall connected behind the speedtouch with pix outside ip is 10.0.0.137/24. Pix inside is LAN network with 192.168.1.0/24.

I need to confiure the vpn between PIX to remote PIX thro speedtouch. Could you provide the hints to do the steps.

Vpn pass through in speedtouch and public ip for the PIX outside interface ..etc.

Thanks


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marwan ALshawi Sun, 08/03/2008 - 23:23
User Badges:
  • Purple, 4500 points or more
  • Community Spotlight Award,

    Best Publication, December 2015

first as long as speedtouch is modem and dose not have any kind of filtering u dont need to do anything with it

in ur pix u need to have a public ip address

and configure PAT and also u have to configure NAT exmption to exmpt VPN traffic from being NATed

also called NAT 0

if the modem have filtering nating u need to make the public ip on the modem and map it to ur pix

and allow esp and ud 500 for vpn tunnel


u didnt mention witch version is ur pix


6.x or 7.x!


this guid for pix vesion 6.3

http://www.cisco.com/en/US/docs/security/pix/pix63/configuration/guide/sit2site.html



this is for version 7 and later


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a0080912cfd.shtml


good luck


please, Rate if helpful


Actions

This Discussion