Re: [fw-wiz] Routing VPN Tunnel from PIX

• Previous message: Eric Gunnett: "RE: [fw-wiz] Cisco Pix 515E Configuration"
• Maybe in reply to: Josh Welch: "[fw-wiz] Routing VPN Tunnel from PIX"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

To: pmahesh90979@yahoo.com
Date: Wed, 08 Dec 2004 07:15:34 -0600

pmahesh90979@yahoo.com wrote:
> Hey Josh,
>
> you can try this..
>
> route outside 0.0.0.0 0.0.0.0 <IP address of the external router
> interface connected to PIX>
> route inside <inside n/w> <netmask> <IP address of the internal router
> interface connected to PIX>
>

Thanks for the reply, but perhaps I wasn't clear. That would work for
purposes of directing traffic to my internal network. But I would like
the default gateway for all the VPN tunnel traffic to be the internal
router, such that if a vpn client wants to access the internet their
traffic must pass through the internal network. I'm not sure if the PIX
will do this.

Thanks,
Josh

> */Josh Welch <jwelch@buffalowildwings.com>/* wrote:
>
> I'm not sure if I am looking for something so simple that I'm
> overlooking it or something so complex it doesn't exist.
>
> I've got a router facing the internet, a pix 515 and an internal
> router. The default route for the pix is the internet facing router.
> I have VPN tunnels terminating on the pix and would like the default
> route for traffic coming through those tunnels to be the internal
> router. I have a couple of statics set up right now to make a couple
> things work, but continuing with that strategy appears to be a good
> recipe for a kludge.
>
> If anyone has solutions, suggestions or pointers I'd appreciate it.
>
> Thanks,
> Josh
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

• Previous message: Eric Gunnett: "RE: [fw-wiz] Cisco Pix 515E Configuration"
• Maybe in reply to: Josh Welch: "[fw-wiz] Routing VPN Tunnel from PIX"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: MLPPP Help Needed - Please review Telco Configuration on Cisco Router ... - do this with the PIX connected. ... the router, I can only ping the IP address of the G0/0 interface. ... not have access to the telco router. ... I was able to get out to the Internet ... (comp.dcom.sys.cisco) Re: MLPPP Help Needed - Please review Telco Configuration on Cisco Router ... 0/0 or 0/1 whcih ever port the PIX connects to ... - do this with the PIX connected. ... the router, I can only ping the IP address of the G0/0 interface. ... I was able to get out to the Internet ... (comp.dcom.sys.cisco) Re: Linksys BEFSX41 vs. high end firewalls ... >wherever possible and want an inexpensive router for DSL internet ... >The Router can be configured to limit internal users' Internet access ... I just set up a Cisco Pix 501 firewall for our medical office. ... (comp.security.firewalls) Re: Design Help ... router will need to connect to the internal LAN through the internal ... The existing PIX for internet connectivity and VPN. ... no longer work as all internal LAN traffic will go through the internal ... (comp.dcom.sys.cisco) RE: Router Internet Monitoring ... Problem with Pix is it is logging literally everything, ... Can you use the Cisco Pix Device Manager to filter the log? ... Subject: Router Internet Monitoring ... Modeled after the famous Black Hat event in ... (Security-Basics)