hi,to do that you need to add the server-B network to the vpn access-list (on both firewalls) that will make the access-list on the PIX look something like this:permit ip 172.20.2.0 255.255.255.0 10.10.10.0 255.255.255.0 (old line)permit ip 172.20.2....
Hi Chris,both are totally doable, for the first you will need to specify two lines in the crypto access list each for a seperate network.and the other one is simple and straight forward and easily done ;)regards,Shadi`
Hi Brad,maybe you can track the dropped traffic and check for the drop code, try using the "show asp-drop" command and monitor the increasing number when passing the port 2000 traffic to get the error code, that could give a hint on what is causing t...
Hi kasame,so if i can understand you right, you would like to get connectivity between Host-B and server-B without passing through the tunnel at all??if that is true, you need to have a static NAT configured for server-B on the partner firewall to a ...