cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
422
Views
0
Helpful
1
Replies

Site2Site VPN + Cisco client3.0

wolfram.girg
Level 1
Level 1

Hi,

i have a site2site VPN running und vpn clients can access their local network, but didn't reach the remote central office over the site2site vpn connection. The branch office ( where the clients dial in ) is a Pix 515. I configured the IKE Mode Config ( dyn Address Assignment for VPN client ) but the IPSEC access-lists to the central site get no hits. ( with source address of the vpn-clients ) 2 VPNs are on the same interface. Is the Pix able to unpacked the encrypt packet from the client and send it out to the same interface over the site2site vpn ?

pls. help

Than´x

1 Reply 1

cjacinto
Cisco Employee
Cisco Employee

This won't work, as the PIX would not redirect the traffic on the same interface that it receives the packet on. Thus if the client is terminating on the outside of the PIX for VPN remote access, the same packet won't be redirected by the PIX to the outside interface to go across the site to site vpn tunnel.

A router would do this but not the PIX.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: