Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

IPSEC out the same interface?

Hi,

I need to setup a path from a Check Point to a PIX 506 to a Cisco SOHO91 (12.3(8)). I do not want to go direct from the Check Point to the SOHO because there are many more sites that will need the same solution.

Anyway, the basic question is this: The IPSec traffic for the SOHO coming from the Check Point will enter and leave the PIX through the same interface. It's not working now, and I am wondering if it is even possible to do what I am trying? I recall that some firewalls will not pass traffic out the same interface the traffic arrived on.

Thanks,

Mike

2 REPLIES
New Member

Re: IPSEC out the same interface?

Hello,

Only Pix code 7.x, and above will allow traffic to enter and leave through the same interface (known as IPSec Hairpinning). Unfortunately the PIX 506 will not support 7.x code.

Regards

Pradeep

New Member

Re: IPSEC out the same interface?

Thanks!!

142
Views
0
Helpful
2
Replies
CreatePlease login to create content