06-03-2003 11:19 AM - edited 02-20-2020 10:46 PM
Hi all,
I need to config a tunnel with a costumer that has an ADSL connection that changes your IP address every time he connects on internet.
How can I config the PIX Side ?? On the other side that is an SonicWall appliance.
06-03-2003 05:58 PM
You'll need a dynamic crypto map on the PIX, just like if you had VPN clients connecting in. In this scenario the SonicWall will always have to initiate the tunnel, the PIX can't be the initiator cause it doesn't know the remote IP address to send the packets to.
Sample config is here:
http://www.cisco.com/warp/public/707/29.html
A couple of modifications to teh above sample config though.
- Don't use the "sysopt ipsec pl-compatible" command, just leave it out.
- The access-list 103 will define traffic FROM the PIX inside subnet TO the SonicWall's inside subnet.
06-04-2003 03:33 AM
Thanks,
I´ll try this config, but I think this solve my problem.
Edy.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide