Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Pix-to-Pix IPSec is OK, but I have routing problems!

I have Pix2Pix IPSec which works fine but there are some routing issues.

Pix 1 inside - 192.168.31.1

Pix 1 outside - 172.16.1.2

Internet (IPSec tunnel)

Pix 2 outside - 172.17.1.2

Pix 2 inside - 10.51.2.2

Router at site 2 (eth0) - 10.51.2.1

Router at site 2 (eth1) - 10.100.1.1

Routes:

Pix 1 - 0.0.0.0 0.0.0.0 172.16.1.1

Pix 2 - 0.0.0.0 0.0.0.0 172.17.1.1

Pix 2 - 10.100.1.0 255.255.255.0 10.51.2.1

How do I tell Pix 1 how to get to 10.100.1.0 network???

2 REPLIES
Community Member

Re: Pix-to-Pix IPSec is OK, but I have routing problems!

Strangely enough it will not be a route.

It should be in the access-list that you use to get traffic from pix 1 to 10.51.2 network. The access-list will recognize the "route" and tunnel it to the other pix. At that point it's up to pix 2 to route it on its inside net.

Don't forget to setup the access-list in reverse on pix 2 to allow the 10.100.1.0 traffic from pix 1.

Community Member

Re: Pix-to-Pix IPSec is OK, but I have routing problems!

Thanks .... I had a panic atack that evening .... the router belongs to somebody else ... and they "forgot" to amend the routes on it .....

84
Views
0
Helpful
2
Replies
CreatePlease to create content