I have a PIX 501 at my office. The clients I do network managment for have PIX 501's as their edge device.
I would like to setup permanent site to site VPNs with them but I would like to do the following:
Allow - All traffic originating from my subnet to the client networks
Deny - All traffic originating from client subnets to other client subnets
Basically I do not want to be a Hub allowing spoke to spoke communications.
Can this be done easily?
Please provide detailed pix configuration commands to make this happen.
Thanks in advance!