Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 501 client VPN

I use PIX 501 firewall and setup remote VPN aleady. but VPN client cant access intranet servers from outside. I want ask if intranet servers gateway address is not PIX intranet address is work? or all intranet server must need point to PIX intranet interface adddress ? e.g if PIX intranet interface address is 10.10.10.254 my intranet server gateway must 10.10.10.254 right ?

2 REPLIES
Silver

Re: PIX 501 client VPN

The default interface ip address can be PIX interface so that the packets can be forwarded to PIX gateway address.

Cisco Employee

Re: PIX 501 client VPN

Hi Alex,

There are two ways to achieve this:

1: Either you can point the default gateway for the Intranet servers to be PIX inside interface.

Or

2: You can add a static persistent route on the server for the vpn client pool, pointing to the PIX inside interface. E.G.

Client pool - 192.168.2.0/24

PIX Inside : 10.10.10.254

then add a route on the server as :

route add 192.168.2.0 mask 255.255.255.0 10.10.10.254

HTH,

-Kanishka

103
Views
0
Helpful
2
Replies
CreatePlease login to create content