Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Routing VPN client traffic back to IPSec tunnel on PIX

Hi Everyone,

Need to confirm this issue.

I have PIX515E with version 6.3(4).

We have configured this PIX as VPN gateway and also Lan-to-Lan VPN.

The issue here is that the VPN client subnet need to talk to subnet over the IPSec tunnel as well which I believe is not possible since they both route in/out the outside interface of the firewall.

Is my assumption is correct? Thanks in advance

1 REPLY
Cisco Employee

Re: Routing VPN client traffic back to IPSec tunnel on PIX

In versions less than version 7, the pix cannot route traffic out the same interface it was received on. Starting in version 7, this can be achieved with the command

'same-security-interface permit intra-interface'

So unfortunately what you want to do won't work with 6.3(4)

114
Views
0
Helpful
1
Replies