I just dropped in a pix 501 for remote access to an office and was wondering if the pix has an equivalent to the 'tunnel default gateway' in the vpn concentrators... I'm not going to do split tunneling, but would like users to be able to access the Internet (via the tunnel) while still using internal resources.
Right now, the pix has a default route to return the encrypted traffic to the internet via it's 'outside' interface. However, if a user tries to go off network through a client connection, there is no 'default' for the inside interface. Attempts to add a second 'inside' default blow up.
This pix is dedicated for remote access, not firewalling, so any options would be considered.
The PIX doesn't have a TDG equivalent, nor will it allow users to go back out to the Internet. The PIX does not route packets back out an interface they came in on, that includes traffic coming in over a VPN tunnel and then being rerouted back out to the Internet. The only option for your users to have Internet access while their VPN is up is to do split tunneling. Sorry about that.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...