I have established a site to site VPN between 2 Pix 506e's. I setup the VPN tunnle using the VPN wizard, and it appears to work properly.
However, I also have users who VPN directly into the PIX via PPTP or a Cisco VPN client. Those users are not able to access resources that are on the other end of the VPN tunnel. It appears as though the map ACL that triggers packets to be sent across the tunnel is not being matched, but I have not been able to figure out how to get this to work properly.
PIX A has a local subnet of 192.168.1.x/24. PIX B has a local subnet of 192.168.2.x/24. Traffic between these 2 subnets flow across the tunnel. However, when someone establishes a VPN into PIX B, they are also put into the 192.168.2.x/24 subnet, but they are unable to access anything in the 192.168.1.x/24 subnet. Is something like this possible? The config from PIX B is attached.
Any help you could offer would be greatly appreciated.
This document gives several answers on frequently asked questions for PFRv3 channel state behavior.
Q1: What are all the channel operational states from a BR (border role) perspective and what are the rules/conditions to be in each st...
The need was to reach an host inside a LAN through a VPN connection managed by the LAN gateway (Cisco 1921).
The LAN gateway performs NAT and there was a dedicate nat rule for the host i wanted to reach through VPN.
I couldn't connect to the hos...
We have 3 identical switches configured by someone else and would like to claim some of the Gigabit ports(G1/G2/G3/G4) for use on servers. When we try to change the wiring and configuration, we run in to connectivity issues. Attached is a des...