[c-nsp] PIX VPN
Ahmad Cheikh-Moussa
acm at netuse.de
Fri Apr 13 14:58:54 EDT 2007
Hi!
I have a general question to PIX and VPN
A customer has a PIX 506 with 6.3(5) and wants to establish
a vpn tunnel. Normally no big thing, but he wants to terminate
the vpn tunnel on the inside interface. Do not ask why.
Actually he has some problem with the tunnel. He can see
that the tunnel is established, but nothing goes through
the tunnel. In the logs he find the messages no route
to host. The pix has no default route. It only has a route to
get the other vpn tunnel side.
I think the problem will be the nat exemption with nat 0.
So before I start the debugging. Normally there should
be no problems to terminate the vpn tunnel on the inside interface,
right ?
Nat 0 should work on the inside interface too, right ?
Thanks in advance,
Ahmad
--
Ahmad Cheikh-Moussa
NetUSE AG
Dr.-Hell-Straße, 24107 Kiel, Germany
Telefon: +49 431 2390 400 -- Telefax: +49 431 2390 499
Service: Service at NetUSE.DE -- http://NetUSE.DE/
Vorstand: Andreas Seeger (Vorsitz), Dr. Roland Kaltefleiter, Dr. Jörg Posewang
Aufsichtsrat: Detlev Hübner (Vorsitz)
Sitz der AG: Kiel, HRB 5358 USt.ID: DE156073942
Diese E-Mail enthält vertrauliche oder rechtlich geschützte Informationen.
Das unbefugte Kopieren dieser E-Mail oder die unbefugte Weitergabe der
enthaltenen Informationen ist nicht gestattet.
The information contained in this message is confidential or protected by
law. Any unauthorised copying of this message or unauthorised distribution
of the information contained herein is prohibited.
More information about the cisco-nsp
mailing list