I have a PIX 506 (v6.2.2) that is set up as a hardware client to a VPN 3005 concentrator. The tunnel works fine, but the application I am using requires being able to ping and SNMP query the PIX inside address from the 3005's network (which currently I cannot accomplish). I would also like to be able to remotely manage this PIX when the tunnel is active (telnet/web).
If I use a 3002 hardware client, everything works great - I can ping, SNMP and run the web based config from the concentrator's network.
There is not much to the PIX hardware client setup (address, passwords, etc.); perhaps there is a general setting on the PIX that will open this up. I tried allowing all traffic through to no avail.
Re: PIX as VPN client - cannot ping through tunnel
Sorry that I don't have anything to share with you. In fact, I am seeking your help. In another post you mentioned that you have an IP Phone behind a Pix 501 connecting to your VPN concentrator. I have the same setup but I am getting one way voice. The 501 is configured as a hardware client. The logon script runs when I connect however, the only computer I see when logged on to our Domain is my computer and not the rest. Everything is pingable.
What am I missing with either the VPN concentrator config or the Pix that I can call but not hear the other side?
I hope you can help me out as I can't get a straightforward explanation from Cisco TAC.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :