I have a PIX 501 with a VPN configured (pool addresses are 188.8.131.52) which enables communication to the "inside" subnet (10.1.2.0) - this works fine. Now I want to extend that so that users connected to this VPN can also communicate to machines on the "outside" subnet (10.1.1.0) and out to the Internet (via gw 10.1.1.1). Is this possible? Appreciate any help!
You have to permit the traffic that enterst the interface to exit the same interface, which is accomplished by "same-security-traffic permit intra-interface" command. But unfortunately, this command exists in IOS version 7.2 or greater.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...