I set up a vpn on the dmz. It is working perfectly now. I need to add extra security commands, if any on the pix for this vpn link so to protect against the vpn device itself and my internal network. Need suggestions, Thank you.
If I understand correctly, you have some VPN device hanging off the DMZ interface of the PIX (a third interface). Your tunnels terminate through the PIX outside interface to this device and then have access to resources on the DMZ. If that scenario is correct, the DMZ is isolated and should not have access by default to the inside network so you shouldnt have to add anymore commands to the PIX to protect your inside network.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...