11-13-2001 07:20 PM - edited 02-21-2020 11:29 AM
We currently have a site-to-site VPN setup using a PIX 506 on each of two networks.
We want VPN clients to connect to one network and have access to servers on both networks, so we're planning to add a Concentrator 3005 to one network, and have clients connect to that device. The PIXs will still handle the site-to-site. The idea is that traffic from the clients will come into one network and then be able to go through the PIX to get to the other network.
Has anybody done this? We hear it should be work, but I can't find any specific examples that confirm this.
Thanks,
-j
11-19-2001 06:50 AM
Sure that should work. I cant see any problems with that design. Just put your Concentrator in parallel with the PIX and not behind it.
02-15-2002 08:57 AM
I am in a similar position - can you please elaborate on the paralled VPN / PIX design. Where should I terminate the tunnel after it passes the edge router? I will really appreciate your suggestions on central site design with VPN concentrator, PIX and RADIUS.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide