Help please.
I have spent most of the day putting together what I considered was a very simple config. I have 2 x PIX 506's connected into the 4 port switch on the back of a Cisco 837.
I wanted to create a tunnel between both PIX's. My IP scheme is as follows:
PIX1 Inside - 10.1.0.0 /24 PIX1 Outside - 80.X.X.X /29
PIX2 Inside - 10.2.0.0/24 PIX2 Outside - 80.X.X.X/29
837 - Ethernet 0 -80.X.X.X/29 Dialer0 - IP Unnumbered Ethernet0 NB I put static routes on the 837 to the PIX1 and PIX 2 LAN addresses.On the PIX's I believe that I have done everything in the correct way. The content has been omitted because it's the access-list that's the problem. I am not seeing any hit-counts - The statement on PIX1 (reveresed for PIX 2) is as follows:
access-list traffic permit ip 10.1.0.0 255.255.255 10.2.0.0 255.255.255.0
The pre-shared keys, DH group, encryption, peer addresses, Crypto map statements etc for ISAKMP / IPSEC all appear to be OK.
Is there an issue with using an 837 in this config.
Regards
-- Darren Green