PDM over IPSec tunnel
Posted on 2004-08-31
I have a PIX 506E functioning as a VPN endpoint (with limited firewall) in a client's office. This 506E is used to create an IPSec tunnel back to our main office for FTP uploads.
The tunneling, routing and firewalling are all working fine. I can access PDM from a system on the client's office end. However, I cannot access the PIX via PDM over the IPSec tunnel. Here's my network layout
Main office 192.168.100.x 100.1 is PIX 515E VPN endpoint
Client office 192.168.107.x 107.1 is PIX 506E VPN endpoint
I can access PDM from a 107.x system, but not from a 100.x system. PDM/HTTPS access is allowed for 192.168.107.0/24 on the Inside interface and 192.168.100.0/24 on the Outside interface. Management Access Interface is currently None. I have an access rule allowing 100.x to access 107.1 via HTTPS.
Any ideas? Once I've established the IPSec tunnel and denoted 100.x as a valid network for PDM access, shouldn't I be able to run it from a 100.x machine? Thanks for your assistance.