Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

vpn lan-to-lan with pix behind router

jsastre 21 sep 17:31 mostrar opciones

De: "jsastre" <jssas...@hotmail.com> - Buscar mensajes de este autor

Fecha: Wed, 21 Sep 2005 08:31:05 -0700

Local: Mié 21 sep 2005 17:31

Asunto: pix behind router

Responder | Responder al autor | Reenviar | Imprimir | Mensaje individual | Mostrar mensaje original | Eliminar | Notificar abuso

Hello,

I'm going trying connect 2 pix in a Lan-to-Lan vpn in the next

schema:

Lan1 -- Pix1 -- Router ------- Internet --------- Pix2 --- Lan2

The problem is that between Pix1 and Router there is a private lan

and although I have redirected all traffic get by Router to Pix1

(ipsec, ip 50, 51,... included), the vpn doesn't work. Any idea?

Thanks in advance,

J.

Config: Pix1 inside: 192.168.10.1/24

Pix1 outside: 192.168.2.2/24

Router inside: 192.168.2.1/24

Router outside: Public IP 1

Pix 2 outside: Public IP 2

Pix 2 inside: 192.168.20.1/24

3 REPLIES
New Member

Re: vpn lan-to-lan with pix behind router

Are you using PAT or static nat for PIX 1 on the router?

You may need to enter the command:

isakmp nat-traversal

on both pix's

this command wraps all ipsec packets in UDP and allows you to pass traffic through nat devices.

let me know if this works

New Member

Re: vpn lan-to-lan with pix behind router

Hello,

Yes, I have just connectivity, anyway any in the router cut the icmp traffic but it's other issue.

Thanks a lot for your reply.

J.

New Member

Re: vpn lan-to-lan with pix behind router

I'm sorry, what was that?

105
Views
0
Helpful
3
Replies