Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
995
Views
0
Helpful
2
Replies

Concentrator and PIX setup

adrian.watmough
Level 1
Level 1

‎05-31-2002 02:43 AM - edited ‎02-20-2020 10:04 PM

Hi,

Does anyone know or have experience in the following.

Is it possible to have a PIX and VPN concentrator running side by side. PIX would be for Internet access in/out and conentrator would be for VPN clients connecting over the internet to access internal servers.

Any suggestions?

0 Helpful
2 Replies 2

travis-dennis_2
Level 7
Level 7

‎05-31-2002 02:50 AM

Running a PIX and a VPN Concentrator in parallel is a fairly standard setup. I have a small switch hanging off the inside interface of my router and plug the PIX and Concentrator into the switch. Depending on how you configure the Concetrator the VPN clients could have all, some or no access to resources on the LAN.

0 Helpful

sconnolly
Level 1
Level 1

‎06-03-2002 09:33 AM

Like Travis said, it is a fairly standard setup to have the Pix and VPN running side by side.

If your internal network is flat, this is fine if you are only doing remote access by clients. The problem arises when you try to do LAN to LAN tunnels. With a flat internal network, the firewall is your default gateway. In order to get clients to send data to the remote networks, through the VPN, you would need to add route statements pointing them to the VPN concentrator. The other options would be to either put the inside of the VPN off a DMZ on the firewall, or install a router on the internal network.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card