Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 515 and multiple VPN: to client and DMZ - possible???

We are planning to implement a PIX 515, creating a VPN to a client site (with a 1722 router on the client end). We will also be using an ethernet interface on the PIX to connect a DMZ. My question is:

can we also implement a VPN between internal machines (static NAT) and the DMZ at the same time as having the VPN to the client site? We are not planning on initially getting any sort of hardware acceleration card.

Your input is greatly appreciated!

2 REPLIES
New Member

Re: PIX 515 and multiple VPN: to client and DMZ - possible???

You shouldn’t have any problems doing that….Current PIX code allows you to terminate your VPN tunnel on any interface. I think this design will work fine.

New Member

Re: PIX 515 and multiple VPN: to client and DMZ - possible???

what you should do is consider upgrading the 1722 to a 2600 router and do ip tunneling and this way you don't really add any overhead then you can do IPsec tunneling to the customer site and add routes to a specific destination on your network and the traffic is not all over your network.

151
Views
0
Helpful
2
Replies
CreatePlease to create content