PIX 506e VPN end point behind ASA 5510.
PIX 506e VPN end point behind ASA 5510.
I have a third party VPN server and a PIX 506e that are going to have a site to site connection. The third party is called a Junxion box and has very limited settings. I have had the Junxion and the PIX Site to Site setup and working with no problems. This is when I add my public IP to the PIX.
The problem is my pix needs to be behind the ASA 5510. As soon as put it behind the ASA it stops working. I have A static nat from external ip to interal ip of the PIX. I have AH, ESP, and 4500 open on the firwall pointing to the external address of the PIX.
I can see the other box workin on phase one but never finishing. I think it might be the NAT from the ASA to the PIX
I have a third party VPN server and a PIX 506e that are going to have a site to site connection. The third party is called a Junxion box and has very limited settings. I have had the Junxion and the PIX Site to Site setup and working with no problems. This is when I add my public IP to the PIX.
The problem is my pix needs to be behind the ASA 5510. As soon as put it behind the ASA it stops working. I have A static nat from external ip to interal ip of the PIX. I have AH, ESP, and 4500 open on the firwall pointing to the external address of the PIX.
I can see the other box workin on phase one but never finishing. I think it might be the NAT from the ASA to the PIX
batry_boy
On the ASA, try allowing UDP 500 through to the PIX public address as well.
ASKER
Yeah i forgot to say i allowed ISAKMP also.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.