List Info

Thread: site to site VPN using PIX 515 and PIX 501 and no router involved between them
site to site VPN using PIX 515 and PIX 501 and no router involved between them
user name
 2006-02-19 01:35:07 
You need to add the IPSEC traffic to the NONAT access-list:

access-list 101 permit ip X.X.X.0 255.255.255.0 10.10.12.0 
255.255.255.0

access-list nonat permit ip X.X.X.0 255.255.255.0 host
10.10.12.12
access-list nonat permit ip X.X.X.0 255.255.255.0 host
10.10.12.14

So access-list nonat should look like this:

access-list nonat permit ip X.X.X.0 255.255.255.0 10.10.12.0

255.255.255.0







 
Yahoo! Groups Links

<*> To visit your group on the web, go to:
    http://gr
oups.yahoo.com/group/PIX_Firewall/

<*> To unsubscribe from this group, send an email to:
    PIX_Firewall-unsubscribe@yahoogroups.com

<*> Your use of Yahoo! Groups is subject to:
    http://docs.yahoo.c
om/info/terms/
[1]

about | contact  Other archives ( Real Estate discussion Medical topics )