Remote VPN

Unanswered Question
Sep 30th, 2008
User Badges:

Greetings all,

Site A is connected to Site B via a IPSEC VPN tunnel. Now I also have remote users using a VPN client connecting to site A. Is it possible to configure the PIX in site A so that when a remote user connects to site A the user will also have connectivity to site B (via the IPSEC tunnel)?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 3 (2 ratings)
acomiskey Tue, 09/30/2008 - 11:39
User Badges:
  • Green, 3000 points or more

Adding to what Arul posted, you will also need to add the additional traffic to your crypto acl's on both pixes and also the nat exemption acl on pix b. Also, you didn't mention what version pix you use, if version 6, the above does not apply.

merryllem Tue, 09/30/2008 - 12:10
User Badges:

Sorry i did not at the PIX os ver the first time.

The pix is running on 6.3

with that said, is it still possible?

acomiskey Tue, 09/30/2008 - 12:12
User Badges:
  • Green, 3000 points or more

No, it's not possible with what has been mentioned here. You can not hairpin in pix 6.x.

ajagadee Tue, 09/30/2008 - 12:29
User Badges:
  • Cisco Employee,

Nope, Not possible with 6.3.



** Please rate all helpful posts **

bfpnetadmin Wed, 10/29/2008 - 12:30
User Badges:

Do you know if you can give my inbound VPN clients access to the Internet after they are connected to my PIX running IOS 7.0 or 8.0? My users would me making inbound PPTP vpn connections from their random computers, not using the Cisco VPN client. I want them to have Internet access as well as access to our corporate network.



This Discussion