Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

ISA behind PIX

Out company's network is

INTERNET >><< (public id)ROUTER(public ip) >><<(public ip)PIX(public ip) >><< (public ip) ISA2004 (private ip)

And i want to implement the VPN on ISA2004, what configuration should I do on PIX ?? Thanks.

1 REPLY

Re: ISA behind PIX

You need to open ah(ip/51), esp(ip/50) and isakmp (udp/500) to allow pass-through VPN traffic. I believed no address translation is required since both of your PIX inside/outside carry public IP.

Pls look at the example at:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008045a2d2.shtml

Pls rate all useful post(s)

HTH

AK

362
Views
4
Helpful
1
Replies
CreatePlease to create content