Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

secondary subnet trough PIX-PIX VPN tunnel

I have a well function IPSEC tunnel betwen to PIX 501. Now I need to route a secondary subnet trough the tunnel. In site A, I have IP address 10.10.10.0/24, site B 10.10.11.0/24 and behinde a router 192.168.1.0/24. It is possible?

1 REPLY
New Member

Re: secondary subnet trough PIX-PIX VPN tunnel

In PIX A you will have to add a line in your nonat acl and crypto acl

permit ip 10.10.10.0 255.255.255.0 192.168.1.0 255.255.255.0

Same thing in PIX B

permit ip 192.168.1.0 255.255.255.0 10.10.10.0 255.255.255.0

and in PIX B you need to add a route for the 192.168.1.0 subnet.

route inside 192.168.1.0 255.255.255.0 10.10.11.x

where 10.10.11.x is the IP address of the router

105
Views
0
Helpful
1
Replies