Pix 501

- R
- RG
  
  Contact options for registered users
posted
15 years ago

Sun, May 18, 2008 2:52 AM

My vpn ip address pool is 192.168.4.100 - 192.168.4.200.

Can I define the inside network to be on 192.168.0.0 subnet?
Can I do this? | | machine A interface 192.168.3.9 || --------------- || port 0 of PIX router|| and | | machine B interface 192.168.4.4 || ----------------- || port 1 of PIX router||

If everything above is yes, when connected to via vpn, will pix router know to route ip 192.168.4.4 via port 1?

Thanks in advance

Loading thread data ...

- W
- Walter Roberson
  
  Contact options for registered users
Vote on answer
posted
15 years ago

Sun, May 18, 2008 3:41 AM

Yes.

Yes; however, machine B will likely not be reachable over any VPN that gets its address from the vpn IP address pool.

Probably not, but sometimes it works even though it really should not.

Your VPN ip address pool should be an IP range that is not in the same subnet as your inside interface, so that your inside hosts will know they have to route to the VPN hosts instead of trying to connect to them directly over the local LAN.

Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.