Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
297
Views
0
Helpful
1
Replies

Routing VPN client traffic back to IPSec tunnel on PIX

k.ramalingam
Level 1
Level 1

‎03-23-2008 11:40 PM - edited ‎03-11-2019 05:21 AM

Hi Everyone,

Need to confirm this issue.

I have PIX515E with version 6.3(4).

We have configured this PIX as VPN gateway and also Lan-to-Lan VPN.

The issue here is that the VPN client subnet need to talk to subnet over the IPSec tunnel as well which I believe is not possible since they both route in/out the outside interface of the firewall.

Is my assumption is correct? Thanks in advance

Labels:
0 Helpful
1 Reply 1

Jay Johnston
Cisco Employee
Cisco Employee

‎03-24-2008 11:27 AM

In versions less than version 7, the pix cannot route traffic out the same interface it was received on. Starting in version 7, this can be achieved with the command

'same-security-interface permit intra-interface'

So unfortunately what you want to do won't work with 6.3(4)

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card