Hi ,

I have got PIX515E and I using win2k clients using l2tp over ipsec to establish vpn with it .My internal network say is 20.208.1.x and my outside is say is 200.244.204.xxxx .The clients connect ok and establish a session and are given a internal IP address 20.208.25.x .But this client cannot ping any internal network machine .

Access-list on the PIX is

access-list 90 permit ip 10.0.0.0 255.255.255.0 10.208.25.0 255.255.255.0

nat (inside) 0 access-list 90

Thanks

Raj