Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Site to Site VPN access list public IP?

Can a public IP be used for access lists for VPN? Example: access-list 100 permit ip 192.168.1.x 255.255.255.0 208.154.180.x 255.255.255.240

PIX doesn't seem to like this....

Just curious as we have a new client that is using public ips on their internal network that they refuse to change to private.

2 REPLIES
Cisco Employee

Re: Site to Site VPN access list public IP?

Sure, the PIX doesn't care what the IP addresses are. There's nothing in the PIX code that even tells it what a private or a public IP address is.

What doesn't the PIX like about it? What are you seeing?

Community Member

Re: Site to Site VPN access list public IP?

Found the issue, rookie mistake, fat fingered the subnet ID and didn't catch it, thanks man.

339
Views
0
Helpful
2
Replies
CreatePlease to create content