Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

pix 515 with private outside ip address and vpn

I have vpn set up with 192.168.0.1 for the outside interface address. Can I connect to vpn with the PAT registered IP address I set up?

2 REPLIES
Cisco Employee

Re: pix 515 with private outside ip address and vpn

If you mean you have this:

> ip address outside 192.168.0.1 255.255.255.0

> nat (inside) 1 0.0.0.0 0.0.0.0

> global (outside) 1

then no, you can't connect to this for your VPN connections.

You have to change it to:

> ip address outside

> nat (inside) 1 0.0.0.0 0.0.0.0

> global (outside) 1 interface

then you'll be able to connect to it. Of course your default gateway will also change too.

Re: pix 515 with private outside ip address and vpn

I assume you have a router at the outside of the pix?

You should forward all the vpn traffic (udp/500 and esp)that arrives at the outside interface of the router to the outside interface of the pix. I don't think it matters that the outside (private)ip address of the pix is also use for pat.

Kind Regards,

Tom

108
Views
0
Helpful
2
Replies
CreatePlease to create content