Vpn from private IP
Hi,
my configuration is:
Office: pix 506E, 6.3(5) Outside ip: static - public
Home:
ADSL Router Outside ip: Dynamic - public
Inside: 192.168.0.1
PIX 501 6.3(5) Outside: 192.168.0.2, Gateway: 192.168.0.1
Inside: 10.12.7.1 , clients: 10.12.7.X
When i am at home, from My laptop, with Cisco clients v 4.8 i am able to connect by vpn to office.
I am trying to configure the hpme PIX to connect office PIX by vpn, so all my home pc are tunnelled.
I configure all but the log say:
ISAKMP Phase 1 retransmission (local 192.168.1.2 (initiator), remote xxremoteIPxx)
702303: sa_request, (key eng. msg.) src= 192.168.1.2, dest= xxremoteIPxx, src_proxy= 10.12.7.0/255.255.255.0/0/
dest_proxy= 10.0.7.0/255.255.255.0/0/0
lifedur= 28800s and 4608000kb, spi= 0x0(0), conn_id= 0, keysize= 0, flags= 0x4004
10.0.7.0/24 is the internal private network on office pix.
It is possible configure the home pix to do this, or is impossible without a pubblic ip address on outside interface ??
Thank you,
Mauro
my configuration is:
Office: pix 506E, 6.3(5) Outside ip: static - public
Home:
ADSL Router Outside ip: Dynamic - public
Inside: 192.168.0.1
PIX 501 6.3(5) Outside: 192.168.0.2, Gateway: 192.168.0.1
Inside: 10.12.7.1 , clients: 10.12.7.X
When i am at home, from My laptop, with Cisco clients v 4.8 i am able to connect by vpn to office.
I am trying to configure the hpme PIX to connect office PIX by vpn, so all my home pc are tunnelled.
I configure all but the log say:
ISAKMP Phase 1 retransmission (local 192.168.1.2 (initiator), remote xxremoteIPxx)
702303: sa_request, (key eng. msg.) src= 192.168.1.2, dest= xxremoteIPxx, src_proxy= 10.12.7.0/255.255.255.0/0/
dest_proxy= 10.0.7.0/255.255.255.0/0/0
lifedur= 28800s and 4608000kb, spi= 0x0(0), conn_id= 0, keysize= 0, flags= 0x4004
10.0.7.0/24 is the internal private network on office pix.
It is possible configure the home pix to do this, or is impossible without a pubblic ip address on outside interface ??
Thank you,
Mauro
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thank you,
Mauro