Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

Redirect all traffic from remote to central site

I have the following connectivity.

PIX A, PIX B and PIX C is connected to internet. There is a VPN tunnel from PIX A to PIX B and another tunnel from PIX B to PIX C. VPN tunnels are configured and from A-PIX network I can access B-PIX local network. Is it possible to send all traffic to B-PIX. I mean if any user from A-PIX like to browse internet there all traffic will go through to B-PIX. Beside this is it also possible to share the tunnel created in B-PIX. I mean can I access C-PIX network from A-PIX via B-PIX without configuring anything in A-PIX.

1 ACCEPTED SOLUTION

Accepted Solutions
Community Member

Re: Redirect all traffic from remote to central site

Configure "same-security-traffic permit intra-interface" on PIX B to allow the incoming VPN traffic from PIX A to use the same outside interface on PIX B for internet access.

You can also access PIX C network via PIX B. Include the network of PIX A in the crypto access-list configured at PIX B and also include the network of PIX A in the crypto access-list of PIX C. Then they can talk with each other. This is nothing but a sort of spoke-to-spoke communication with PIX B as a HUB.

1 REPLY
Community Member

Re: Redirect all traffic from remote to central site

Configure "same-security-traffic permit intra-interface" on PIX B to allow the incoming VPN traffic from PIX A to use the same outside interface on PIX B for internet access.

You can also access PIX C network via PIX B. Include the network of PIX A in the crypto access-list configured at PIX B and also include the network of PIX A in the crypto access-list of PIX C. Then they can talk with each other. This is nothing but a sort of spoke-to-spoke communication with PIX B as a HUB.

121
Views
5
Helpful
1
Replies
CreatePlease to create content