RE: [fw-wiz] (no subject)
From: Ben Nagy (ben_at_iagu.net)
Date: 07/08/05
- Previous message: Sp0oKeR Labs: "Re: [fw-wiz] Discretionary WiFi Access"
- In reply to: Spearman, William CONT (FISC YOKO): "[fw-wiz] (no subject)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
To: "'Spearman, William CONT (FISC YOKO)'" <William_W_Spearman@yoko.fisc.navy.mil>, "'Wizards Firewall (E-mail)'" <firewall-wizards@honor.icsalabs.com> Date: Fri, 8 Jul 2005 10:34:26 +0200
I'm not sure. However...
> -----Original Message-----
>[...]
> access-list nonat_inside permit ip 192.168.XX.0 255.255.255.0
> 192.168.X1.0 255.255.255.0
[...]
> ip local pool vpnpool1 192.168.X1.X-192.168.X1.X
[...]
> nat (inside) 0 access-list nonat_inside
All good so far - don't NAT traffic going from inside to 192.168.X1.X, which
are the external VPN pool addresses.
[...]
> route inside 192.168.X1.X 255.255.X.X 34.45.56.68 1
Uh.. I may well be having a stupid day and it's a long time since I played
happy-pix-games, but why are you routing your VPN addresses to the
_internal_ interface?
ben
_______________________________________________
firewall-wizards mailing list
firewall-wizards@honor.icsalabs.com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
- Previous message: Sp0oKeR Labs: "Re: [fw-wiz] Discretionary WiFi Access"
- In reply to: Spearman, William CONT (FISC YOKO): "[fw-wiz] (no subject)"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
