Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
289
Views
0
Helpful
3
Replies

VPN site2site configuration with private addressing

mburtin
Level 1
Level 1

‎10-06-2003 04:42 AM - last edited on ‎02-21-2020 11:43 PM by Community Manager

Hello,

I have to configure a site-to-site VPN between 2 PIX. The first one has a public IP adress on its external interface whereas the second has a private IP.

PIX1-------router1---Internet---router2--------PIX2

(public IP) | (public IP) | (private IP)

Do I need to re-address private addressing between router2 and PIX2 so as I've got a public IP associated with my PIX2's external interface or is there a way to terminate my VPN tunnel on the PIX2 private address ?

thanks for your help

Labels:
0 Helpful
3 Replies 3

tvanginneken
Level 4
Level 4

‎10-06-2003 05:47 AM

Hi,

it's possible to terminate the VPN tunnel on PIX2. Just make sure that router2 forwards UDP/500 (=IKE) and ESP (=IPSEC) from its external interface to the outside interface of the PIX2.

Kind Regards,

Tom

0 Helpful

mburtin
Level 1
Level 1
In response to tvanginneken

‎10-06-2003 05:54 AM

Hi,

How can I do this ?

I have to translate the outside interface of the PIX2 to a public adress on the router2 ?

Best regards

0 Helpful

jmia
Level 7
Level 7
In response to mburtin

‎10-06-2003 06:34 AM

Hi -

Here's a good document on PIX-to-PIX VPN Configuration also lots more configuration examples on the 2nd link.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094761.shtml

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

Hope this helps - Jay.

0 Helpful
Customers Also Viewed These Support Documents