Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Router to PIX Doubt...

Dear Friends,

Around 300 dialup clients are connecting to my PIX from various public ip assigned internet pc's,whereas they will be assigned an ip from the pool of my pix to access my LAN.Now we are moving to all the clients to cisco isdn routers with IPSec with ISAKMP certification.They will be connecting to an ISP and it will be routed towards us.

The problem is, as we cannot disturb the existing dialup clients setup,the idea is to make the PIX to have two certificates to issue to clients for dialup and ISDN router clients vice versa.

My doubt is, can pix have two certificates like this and will this work, or any other idea to make this...any sample config if possible ?

Also while dialup the IP will be assigned to clients from our PIX pool. Now will router accept the IP address like the same ? if yes any configuration will help us...

Thanks in advance...

  • Other Security Subjects

Re: Router to PIX Doubt...

If I'm not missing something, I don't think holding two certificates is required. The certificate plays no role but to prove the identity of the device, and it can be used regardless of the device on the other end. Only, the remote device should support certificates too.