PIX 506 configuration
Posted on 2006-06-16
I am having a Cisco PIX 506e and having a VPN thru a leased line to a remote site in another company. The problem is that the firewall of the other part is not allowing any traffic coming from real IPs, I want to make all traffic to this site: 10.134.35.59 thru the internal network only (inside of the PIX).
I had this working with the router only and an ISA2000 server, the ISA was routing to the router, the router routing to the other end's router, and then routed to the firewall on the other side.
Since the PIX in installed between the router and my network I am not able to connect. When I enable debugging, it shows that the traffic is passed thru the outside (real IP) of the PIX, which is blocked by the firewall on the other side.
I am hope it is clear.
My IP is 10.157.14.0, the other side IP is 10.157.13.0, and the routers are having .1 .
Previously the conf was as follows:
ISA routes requests to 10.134.35.59 to the router 10.157.14.1 using its local interface,
Router1 (10.157.14.1) routes to the other router, using VPN
Router2 (10.157.13.1) routes to firewall (10.157.13.2)
firewall aloows routing to 10.134.35.59 only if traffic is coming from 10.157.14.0 network