[nsp] PIX OS 6.3 and VPN/VPDN

Robert Crowe rwcrowe at comcast.net
Mon Jul 12 18:00:33 EDT 2004


vpngroup <name> split-tunnel <access-list-name>

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Tony Mucker
Sent: Monday, July 12, 2004 3:58 PM
To: cisco-nsp at puck.nether.net
Subject: [nsp] PIX OS 6.3 and VPN/VPDN

Hello again everyone,

I've almost got my PIX completely integrated into my new environment (it 
replaced a a Checkpoint FW1 that was sadly out of date).

The last step comes this Friday, when I switch my users over to the new 
VPN set up on the PIX.  I've got both VPDN (for MS PPTP) and the 
VPNGROUP (for the Cisco Clients) configured.  However, using either 
connection, my users can get inside the network fine, but they can't get 
out (to the regular internet).

Two questions:

1)  How do I set up the VPN configs to allow them access to the outside 
world while VPN'd in?  Is this something handled on the client side?

2) Is it possible for the client/PIX to send all traffic not destined 
for the internal side through the client's LAN gateway?  I only have a 
T1, and it's already abused as it is.

Thanks again
Tony
_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list