Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
439
Views
0
Helpful
2
Replies

VPN Client to PIX

Lorenzo de Letteriis
Level 1
Level 1

‎08-26-2003 02:52 AM - edited ‎02-21-2020 12:44 PM

Hi all,

I make a VPN from a client to a PIX 525 with 3 interfaces (3 LAN: 192.168.1.0, 192.168.2.0, 192.168.3.0) from LAN 192.168.1.0 and receive an address 10.1.1.x from pool: how can I access in secure mode to 192.168.2.0 and 192.168.3.0, and be able to browsing local lan?

nat(dmz1) 0 access-list 102

nat(dmz2) 0 access-list 103

access-list 102 permit ip 192.168.2.0/24 10.1.1.0/24

access-list 103 permit ip 192.168.3.0/24 10.1.1.0/24

but not is possible to define 2 different vpngroup split tunnel:

vpngroup VPNTEST split-tunnel 102

vpngroup VPNTEST split-tunnel 103

Any suggest?

Thanks

Lorenzo

Labels:
0 Helpful
2 Replies 2

mostiguy
Level 6
Level 6

‎08-26-2003 04:54 AM

access-list 104 permit ip 192.168.2.0/24 10.1.1.0/24

access-list 104 permit ip 192.168.3.0/24 10.1.1.0/24

vpngroup VPNTEST split-tunel 104

should do the trick.

0 Helpful

Lorenzo de Letteriis
Level 1
Level 1
In response to mostiguy

‎08-28-2003 04:53 AM

Simple and genial!

Thanks

Lorenzo

0 Helpful
Customers Also Viewed These Support Documents