Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
457
Views
0
Helpful
2
Replies

Site to Site VPN

h2000
Level 1
Level 1

‎10-26-2001 10:32 AM - edited ‎02-21-2020 11:28 AM

Does anyone know what is the limitation to do site to site VPN involving PIX ?

Thanks.....!!

Labels:
0 Helpful
2 Replies 2

ssoberlik
Level 4
Level 4

‎11-05-2001 06:33 AM

What “limitation” do you want to know about? The PIX can do a lot of VPN tunnels.

0 Helpful

rtzen
Level 1
Level 1

‎11-05-2001 10:02 AM

One particular limitation I just ran into is that the PIX (at least the PIX 506) isn't a router. That is, if you have a PIX-to-PIX VPN plus remote VPN clients connecting to one of those PIXs, the remote client can only see the network behind the PIX it connected to -- it can't see the remote LAN of the PIX-to-PIX connection.

Perhaps this isn't a problem for most people who have a single central site housing all network resources, and remote sites/clients don't have any servers. But if you're trying to setup a distributed intranet with remote clients that need access to services on the networks behind multiple PIXs, this is something you might run into.

I guess you need to add a router into the mix to support traffic between remote clients and remote peers, but I haven't got that far yet. If somebody thinks I'm wrong (and no router is needed), please correct me!

0 Helpful
Customers Also Viewed These Support Documents