What is the recommended PIX configuration for the architecture below?
HQ PIX Terminating all PIX VPN Remote sites. There is a requirement that all remote sites use the Internet connection at HQ's for centralized control/filtering. Any suggestions?
Put a router on the inside of each PIX and treat the IPsec tunnels as point to point links in a classical routed hub and spokes network. You can use static routes or BGP to do the routing without sacrifing MTU, or you can use GRE tunnels from router to router and using any routing protocol you like.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:
