I have a PIX 506e in a remote office that has OSPF capabilities. The endpoint is a VPN 3000 concentrator on my corporate network that is transfering the OSPF routes to the PIX.
Is it possible to build a VPN tunnel on the PIX based on the learned OSPF routes? Or do I have to tunnel everything, including internet traffic, back to the concentrator and let the concentrator make the routing decisions? If I have to tunnel everything back, I will not bother setting up OSPF on the PIX.
What do you think?