Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Need HELP on PIX, router, ADSL, VPN setup

Hi Top NetPros & Cisco engineers.

Sorry if this doesn't fit in here.

We have a 1721 and PIX 515E. 1721 has serial (128Kbps) and ADSL (1MB/128Kbps) connections. Through PBR, PAT'ed traffic from PIX is routed to ADSL. Domino replication, SMTP and IPSec VPN connections to 3 sites are what using the Internet Leased Line.

VPN is terminated outside PIX. Accessing a critical web application on other site is very slow.

This is what I'm thinking to resolve the issue.

* Remove the existing VPN connection from the PIX to the site where the web application is running.

* Use ADSL for the VPN instead.

* 1MB/128Kbps is the max ADSL speed the ISP offers. For more bandwidth, get another ADSL line. 1721 has no spare slots so it has to be replaced so serial & 2 ADSL can be connected.


1. Is it possible that one ADSL will be only for outbound http, FTP,etc and dedicate the other ADSL for VPN only?

2. With VPN terminated on ADSL, the traffic passing between the router and the firewall is not encrypted.

Please feel free if you have better solution.

Thanks in advance.

  • WAN Routing and Switching

Re: Need HELP on PIX, router, ADSL, VPN setup

To ensure a secure tunnel connection, the Cisco Easy VPN Remote feature does not support transform sets that provide encryption without authentication (ESP-DES and ESP-3DES) or transform sets that provide authentication without encryption (ESP-NULL ESP-SHA-HMAC and ESP-NULL ESP-MD5-HMAC)

This widget could not be displayed.