Our head Office is using a Cisco Pix 515e Firewall behind a Cisco 827 DSL router, another remote office site is using a Cisco Pix 506 firewall behind a Cisco 827 DSL router. These are happily talking to each other in a site to site VPN. We also have broadband and dial up users connecting via VPN into the Head Office through the 515e Pix using the Cisco VPN client ver 4.0.2b. Everything works great with the exception of this: One of our Directors connects into the company LAN from his home LAN using his company laptop and the VPN client. There is a printer hanging of his home XP-Pro Desktop that he want to print to. Prior to running up his VPN connection, he can print across his LAN through the desktop fine, once the vpn tunnel is active he cannot. I turned on the "allow Local LAN access" feature in the VPN client, but it makes no difference. I also went into the web gui on the 515e Pix, went into the split tunneling screen and added the network addressing for his LAN (192.168.1.0), this made no difference. FYI - The network address range for his home LAN is completely different to the address range used on the inside of the company LAN, so no conflict there. Also during all of this the VPN client has the statefull inspection firewall enabled (this is bundled with the cisco client). Turning this off also made no difference. What do I need to change in order to get the printing/Local Lan access to work? Is there some other things I need change on the PIX firewall?
- posted
18 years ago