Hi folks,
I know the limitations of the PIX that they can't pass traffic out of the same interface that that traffic originated on... but what about VPN traffic?
I have PC's on another network at a remote site, the remote site will connect to my HQ network using a VPN tunnel using my PIX 515E's outside interface, I want to allow Internet access to these remote site PC's but because of policy they must go through our HQ network Internet connection, this connection uses the same PIX 515E's outside interface. Is it possible for these PC's to do it? It seems to break the same interface rule, or because they are on the end of a VPN will it work?
I do know that with IOS 7 this rule can be broken so that sites on the end of 2 VPN's which terminate at a single PIX 515E's interface can talk to each other. but I don't think that rule applies here.
thanks Dave