in my office we run a PIX 506 with a VPN to another PIX 506 in the datacenter. The IP ranges for these are 192.168.0.0/24 and192.168.1.0/24 respectively.
i have set up another PIX in a clients site with IP range192.168.10.0/24 and set up a remote access VPN for this.
when i remote access using the cisco VPN client and are in my office (i.e. behind my PIX) i can connect to the clients VPN however i can not ping any internal address on that site, and hence the VPN is useless.
in order for the remote access VPN to work i can not be behind my PIX, for example if i give myself a real IP address and plug my laptop in outside the firewall i can connect to the remote access VPN fine and also ping and connect to all the devices there.
any ideas what i need to do either on my firewall to allow this outgoing connections or anything that needs done on the clients PIX?