Can you pls help out with the vpn design, I have the public on the vpn concentrator 3000 connected to the pix dmz (sec30), inside interface (sec100) connected to Campus and the other end of my vpn concentrator connectted to another interface on the pix with sec 80. Is the design okay and how do i allow ike and ipsec traffic through the the pix to the the concentrator on the pix DMZ.
You can make it work, but is there any special reason why you need to concentrator and PIX connected like that?
If the VPN terminates on the concentrator that's fine, and allow UDP 500, ESP and UDP 4500 through the PIX.
Federico.
Getting Started
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:
