I would like to implement the following config on a 501 Pix: on the outside interface of my PIX which is in location b, I have two vpn tunnels going to two separate locations, a and c. Now I would like, through these tunnels, a to be able to contact c through b. Is this possible? Is this one of the cases that requires double NAT-ing? Are there any issues with PIX 501 to receive and send a packet on the same outside interface?
"Are there any issues with PIX 501 to receive and send a packet on the same outside interface?"
Unfortunately it won't work with a Pix 501. The feature you need is called "hairpinning" but this is only supported on pix v7.x code and later (also supported on ASA devices). The pix 501 cannot run v7.x code.
Pix 515E, 525 and 535 are the only pix firewalls that can be upgraded to v7.x code.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...