Members Login
Username 
 
Password 
    Remember Me  
FireWall-1 Gurus Forum -> FireWall-1 Gurus Forum -> creating a avpn behind the firewall
Post Info TOPIC: creating a avpn behind the firewall
nelcnetworks


Status: Offline
Posts: 2
Date:
creating a avpn behind the firewall
Permalink  

Ihave been tasked with creating a vpn tunnel from within my lan to a point on another network over the internet. I do not want the ngai firewall as the endpoint.


I have setup a rule allowing all protocols from the test box ( a cisco pix) to the other end and vice versa. I can see the ike packets leaving my network via the firewall but thats it. I have given  the pix a static nat address.


Does anyone know if this is possible and if so how?



__________________
ccseng2002


Status: Offline
Posts: 84
Date:
Permalink  

Just allow isakmp (udp 500) and ESP (proto 50) to traverse the firewall from the PIX to the vpn remote device (make the rule bidirectional).  Make sure the encryption domain is setup correctly on both ends.


 


 



__________________
Page 1 of 1  sorted by
 
Quick Reply

Please log in to post quick replies.
FireWall-1 Gurus Forum -> FireWall-1 Gurus Forum -> creating a avpn behind the firewall
Tweet this page Post to Digg Post to Del.icio.us


Create your own FREE Forum
Report Abuse 		Powered by ActiveBoard