Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: Firewall/Routing Question

Firewall/Routing Question 9 years 2 months ago #22571

  • johnnymac
  • johnnymac's Avatar
  • Offline
  • New Member
  • Posts: 13
  • Karma: 0
Hi,

I have two PIX 515e's at different locations which are currently connected using a L2L vpn.

We have just had a managed BT MPLS link installed.

We gave BT our internal network ranges and they confirmed their side of the work has been completed.

what I want to do now is use the pix at either end to route and connect the internal networks.

So far I have managed to establish connectivity between the 515e's on their 192.168.1.0/24 and 192.168.3.0/24 networks but am not sure where to go now to enable connectivity to the internal LANS behind the Firewalls.

I would be really grateful if anyone could help.

Kind regards
J Mack
Kind Regards
J Mac
The administrator has disabled public write access.

Re: Firewall/Routing Question 8 years 10 months ago #23972

I am doing the same thing. I have two PIX firewalls with an established Site-to-Site VPN between the two of them.

After you establish the VPN between the two firewalls you would need to setup access lists on each PIX to allow packets to communicate with each other.

PIX 1: 192.168.1.0/24
PIX 2: 192.168.2.0/24

On each pix I have similar access lists which allow traffic between the two networks and then the second part prevents the use of NAT when communicating:

access-list 101 permit ip 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0
access-list NoNAT permit ip 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0
nat (inside) 0 access-list NoNAT
nat (inside) 1 0.0.0.0 0.0.0.0 0 0

These settings were taken from a basic site to site setup document that I found on Ciscos site.
The administrator has disabled public write access.
Time to create page: 0.079 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup