ISA behind PIX

Unanswered Question
Nov 15th, 2006
User Badges:

Out company's network is

INTERNET >><< (public id)ROUTER(public ip) >><<(public ip)PIX(public ip) >><< (public ip) ISA2004 (private ip)

And i want to implement the VPN on ISA2004, what configuration should I do on PIX ?? Thanks.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.
a.kiprawih Wed, 11/15/2006 - 22:09
User Badges:
  • Gold, 750 points or more

You need to open ah(ip/51), esp(ip/50) and isakmp (udp/500) to allow pass-through VPN traffic. I believed no address translation is required since both of your PIX inside/outside carry public IP.


Pls look at the example at:


http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008045a2d2.shtml


Pls rate all useful post(s)

HTH

AK



Actions

This Discussion