Solved

Add second vpngroup to existing remote access to PIX

Posted on 2007-03-22
2
240 Views
Last Modified: 2010-04-09
I have a remote access vpn configured on a PIX 520 (6.3.(5)).  I have been tasked with adding a second remote access vpn configuration to the same box.

The second configuration will have different access-lists used for connecting to a different subnet (different from the existing vpn configuration).

My plan is to add a second vpngroup and access-list.  What else needs done?
0
Comment
Question by:RPPreacher
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 18773775
Nothing, really. You can re-use the existing transforms and existing policies for the new VPN group.
I would use a different ip address pool for the new vpngroup so that your acls are easier to understand and apply
0
 
LVL 20

Author Comment

by:RPPreacher
ID: 18775026
Thanks.  Anyone else and I would check that info first, but I know an answer from lrmoore is good as gold.
0

Featured Post

Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
CCNP Exam question 6 39
Zultys IP phone on home network 19 61
Downloaded Intel Graphic Drivers now all screen views are distorted. 17 83
internal SLA's for IT provision 6 39
Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
For months I had no idea how to 'discover' the IP address of the other end of a link (without asking someone who knows), and it drove me batty. Think about it. You can't use Cisco Discovery Protocol (CDP) because it's not implemented on the ASAs.…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

752 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question