Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN design

I would like to know if anyone is using or is considering using a PIX firewall positioned between a Cisco VPN device (7140 in my case) and the corporate network to provide for firewalling for VPN traffic? My goal is to be able to use the PIX to enforce security policies for users/groups of users and lan-to-lan vpns between our business and vendors who need to access various resources for support purposes. One big issue that needs to be addressed is routing. I would ideally like to use GRE to allow me to run OSPF for my lan-to-lan sites across the VPN, but then with the PIX between my corporate OSPF network and the VPN OSPF network seems to introduce some issues. What other designs are being used to achieve these same objectives for security and routing? Thanks in advance.

New Member

Re: VPN design

What are the issues with this design ?????? The PIX should be able to route

GRE traffic throuhg tunnls established in your site2site topology.

Sunil Wadwani

Cisco TME

New Member

Re: VPN design

I have a couple of questions for you I need to kno minimum basic requirements for PI to PIX firewall ie.

how many IP addresses

and do I need a global outside

I am trying to no avail to setup a PIX to PIX and for some reason it just won't build the tunnel it looks like it's there but I can't get to it

any ideas?????

CreatePlease login to create content