Answered Question
Sep 4th, 2008
User Badges:


I currently have a PIX setup at SiteA and a 1720 router at SiteB. There is a LAN-to-LAN tunnel between the 2 sites. If I was to setup a second tunnel at SiteB terminating on the 1720 router, will it be possible to configure the tunnels so SiteA also has access to the customer VPN tunnel?

I would also want to have VPN tunnels that terminate at the PIX (SiteA) to also be accessible from SiteB.

Would it just be a case of configuring the crypto ACL's for the traffic?


Correct Answer by Marwan ALshawi about 8 years 10 months ago

have a look at the following link will be very usefull

good luck

if helpful Rate

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
alraycisco Thu, 09/04/2008 - 02:31
User Badges:

I think that helps. From my understanding of it, for the customer VPN tunnels that terminate on the 1720 and that need to be accessed from behind the PIX, I should only need to modify the crypto map acl's and the NAT0 acl's. The same interface traffic issue doesn't apply in this case. Is this correct?

grant.maynard Thu, 09/04/2008 - 04:42
User Badges:
  • Silver, 250 points or more

correct, the 1720 won't have a problem with same interface traffic.


This Discussion