Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
341
Views
0
Helpful
1
Replies

Vpn client connecting to spoke site through hub

haimb
Level 1
Level 1

‎01-18-2002 04:43 AM - edited ‎02-21-2020 11:34 AM

We have PIX 515 on the hub site and 5 PIX 501's configured as spoke sites. There are approximately 40-50 remote users who are able to connect to the hub site with the vpn client without problem. But these clients cannot connect to spoke sites.

How should I configure the hub/spoke site in order to get this functionality?

Thanks,

Haim Beyhan

HaimB@enigma.com

Labels:
0 Helpful
1 Reply 1

turnbull
Level 1
Level 1

‎01-19-2002 01:10 AM

The PIX will not redirect. It is a firewall, not a router.

If you can't set the clients to connect directly to the spoke sites, which would probably be the easiest solution, you could investigate the possibility of bouncing the clients off a router on the inside of the hub pix.

If there is a big enough user license on the 501's set vpngroup statements there for direct connection from clients. Remember, there is a limit of 5 concurrent vpn connections to a 501.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents