Pix501 EasyVPN to Pix515 ver6.3.5 Multiple network issue

Unanswered Question
Sep 6th, 2008

I have an easyvpn tunnel from a 501 to a 515. I have multiple vlans on layer 3 switch at 501 location. Is it possible to get all networks at remote branch to tunnel through easyvpn to 515 main site?

I am using split tunneling. I have added the second network in the access list permit statements on the 515. And no go. I have all routes at main location pointing back through the 515 for the second network as well.

networks

main:

10.90.x.x

remote

10.80.x.x

192.168.x.x

Thanks for the help

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Marwan ALshawi Sat, 09/06/2008 - 06:02

if u have the remote site connect to the main site as easyVPN and want the main site to see the two LANs behind the remote site

first u need on the main site config to enable RRI reverse route injuction

and u need route in the remote pix configured to the lans on the switch

in the split tunnel as i see u need an ACL like

access-list 1 permit 10.90.x.x mask

on the main site and apply it to the client group config

good luck

if helpful Rate

Actions

This Discussion