Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

(Possibly stupid) Question about ASDM configured PIX-to-PIX VPN

I have two PIX515's running v7.2(1) and ASDM 5.2(1).

If I use the ASDM's VPN wizard to configure a site-to-site VPN, does that process take care of the need to create split-tunnel settings so that non-VPN outbound traffic from the inside of each PIX is handled correctly ?

1 ACCEPTED SOLUTION

Accepted Solutions
New Member

Re: (Possibly stupid) Question about ASDM configured PIX-to-PIX

Hi,

By default all VPN client traffic is encrypted and sent to the VPN server, Split tunneling is used for remote vpn client to exempt a particular traffic to be encrypted and tunneled to VPN server so that traffic will be sent in parallel to internet or locally.

When configuring site-to-site this is done intuitively when configuring remote networks from both sides that will communicate together through the IPSec tunnel and all other traffic will be routed out to their destinations without encryption.

2 REPLIES
New Member

Re: (Possibly stupid) Question about ASDM configured PIX-to-PIX

Hi,

By default all VPN client traffic is encrypted and sent to the VPN server, Split tunneling is used for remote vpn client to exempt a particular traffic to be encrypted and tunneled to VPN server so that traffic will be sent in parallel to internet or locally.

When configuring site-to-site this is done intuitively when configuring remote networks from both sides that will communicate together through the IPSec tunnel and all other traffic will be routed out to their destinations without encryption.

New Member

Re: (Possibly stupid) Question about ASDM configured PIX-to-PIX

Thanks Abdel.

I thought as much, but since it wasn't plainly spelled out anywhere , I figured I better check with the experts :).

Consider yourself rated...

130
Views
0
Helpful
2
Replies
CreatePlease login to create content