SCENARIO: SOHO customer has a cable modem internet connection. They are using a PIX 501 behind the cable modem. They want the ability to VPN into PIX using VPN software client from anywhere on the internet. Pretty basic set up. I have tested this in a lab setting using a FR switch and a couple of 2500s. VPN tunnel comes right up, passing traffic just fine.
PROBLEM: The public IP address that the ISP is giving to the customer is not pingable from the internet. Even when I remove the PIX and connect a PC directly to the cable modem using that IP address, it's not pingable. ISP must be running PAT somewhere in their network to prevent any type of direct connectivity to this IP address.
Has anyone run into this type of problem, and if so, is their a workaround (besides getting another ISP!)
You need a public internet address for any one on the internet to be able to reach your device. Your ISP is probably just providing you with a NAT/PAT private address. Talk to your ISP about getting a public ip address.
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...