Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN Problem

Hi

The problem I’m having is to get home users who connect via dial up or ADSL using a VPN client, to create a VPN connection to the central 3030 Concentrator then get passed through the transit VLAN then through the PIX firewall to be authenticated by the TACACS+ server, then set back to the Concentrator and a second VPN is created to the client site PIX.

I have been told that I will have to implement RRI for this to work any help would be appreciated.

Cheers

Rick

4 REPLIES
New Member

Re: VPN Problem

Hi Rick,

I am not sure the above design will be woking fine or not. Because I have not got any similar cases before.

I just want to give you a quick suggestion: Why not just build up a LAN to LAN tunnel between the VPN 3030 and the PIX.

When your client build up the VPN tunnel with VPN 3030 (pass the AAA authentication), then get authorization from the AAA server as well.

Then the traffic will be redirected from the central site through the Lan to Lan tunnel between VPN 3030 and PIX , to the PIX network.

In that case, enable RRI will be better, because it is easier to control the routing.

Best Regards,

New Member

Re: VPN Problem

Hi mate

New Member

Re: VPN Problem

Hi mate

Thanks for you help couls i Email you my Diagram for you to look at

My Email is rick.jones@freeserve.com

Thanks

New Member

Re: VPN Problem

Hi mate

Thanks for you help could I Email you my Diagram for you to look at

My Email is rick.jones@freeserve.com

Thanks

87
Views
0
Helpful
4
Replies
CreatePlease login to create content