[c-nsp] Client VPN issue with PIX v6.3
Tony Varriale
tvarriale at comcast.net
Sun Nov 29 23:33:18 EST 2009
PIX code below 7 doesn't support hairpinning.
tv
----- Original Message -----
From: "Graham Wooden" <graham at g-rock.net>
To: "cisco-nsp" <cisco-nsp at puck.nether.net>
Sent: Sunday, November 29, 2009 9:53 PM
Subject: [c-nsp] Client VPN issue with PIX v6.3
> Hi all,
>
> One of my VPN devices is a 525 running v6.3.5. I am having an issue with
> Client VPN sessions coming in on the outside interface while accessing
> subnets that are reached by outside interface. I can access the "inside"
> interface addresses just fine. Is there some sort of limitation that I
> can't access subnets out past the outside interface while having VPN
> sessions terminating on the same interface? I tried to add these subnets
> to
> the split-tunnel acl with no love either.
>
> Thoughts? I have a v7.0.2 525 that is being tied up with another setup,
> so
> I can't test on 7.x code - but if if an upgrade is needed to solve this,
> let
> me know...
>
> Thanks!
>
> -graham
>
>
> _______________________________________________
> cisco-nsp mailing list cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list