|
Home > Archive > alt.certification.cisco > September 2003 > HELP Pix 515
You are viewing an archived Text-only version of the thread.
To view this thread in it's original format and/or if you want to reply to
this thread please [click here]
|
|
|
| Hi,
I have a pix 515 and all work good but i have a little question.
How can I configure the pix to "pass througt" VPN ? (LAN to outside)
Thanks for your answer,
Fwed
| |
|
| Your INSIDE network is the most trusted, usually on an interface which has a
security rating or 100. The OUTSIDE is on the least trusted interface,
usually a security rating of 0. You can pass from a higher security level
interface to a lower one without the need of an access-list or static
statement. Therefore you should be able to raise a VPN so long as the
connection originates from the INSIDE going out.
Check to see you do not have an OUTBOUND access list applied to the INSIDE
interface. For example, "access-group 100 in interface inside", would
restrict OUTBOUND access to that only allowed by access-list 100.
Hope this helps.
HG
----------------------------------------------------------------------------
-------------------------
This mail is provided as is. No warranty or guarantee is provided. Any
opinions expressed are strictly those
of the author. They do not represent the opinions of any organisation,
person or other lifeform.
No animals were hurt during the composition of this disclaimer.
Warning : This disclaimer may contain traces of nuts.
"Fwed" <news-free@okilinux.homelinux.org-NOSPAM> wrote in message
news:3f77f15f$0$27587$626a54ce
@news.free.fr...
> Hi,
>
> I have a pix 515 and all work good but i have a little question.
>
> How can I configure the pix to "pass througt" VPN ? (LAN to outside)
>
> Thanks for your answer,
>
> Fwed
>
>
|
|
|
|
|