[nsp] IPSec on Pix to Pix
James hampton
jamhampton at toast.net
Mon Apr 28 18:09:04 EDT 2003
The Pix does not seem to be encapsulating the "interesting packets". We are using NAT. My question is when I create the access-list which will define traffic to be encrypted, do I use the inside private addrs for local_source and destination (access-list ipsec 192.168.0.1 255.255.255.0 192.168.2.0 255.255.255.0) or do I use the private for the local_source and the global addr of the destination (access-list ipsec 192.168.0.1 255.255.255.0 64..X.X.X 255.255.255.0).
Im using pre-share and the configs appear to be mirrored exactally and the traffic just isnt getting encrypted.
James
More information about the cisco-nsp
mailing list