Home > IT Answers > Security > IPSec Tunnel
Help

Question

  Asked: Oct 24 2007   3:53 PM GMT
  Asked by: Solarxterra

IPSec Tunnel


IPsec, ASA

Can you build an IPSec tunnel from an Internal Router to an External ASA, passing through a PIX? The PIX, which I have no control over, I am told is running 6.2 and cannot do IPSec (???) and I am having to attempt this feat!

Has anyone experienced this in the real world? All I can find is examples of lab testing and not Pass-through on the PIX.

Any source material or suggested reading would be a help and much appreciated.

Subscribe to Alerts! Get questions and answers delivered to your Inbox.


E-mail me updates on this question



   SUBSCRIBE

hidden modal window
Help

Answer Wiki (Improve, edit or add to this answer)

IMPROVE THIS ANSWER
View History
 RATE THIS ANSWER
+2
Click to Vote:
  •   2
  •  0
Last Answered: Feb 8 2008  0:01 AM GMT  by Xanader




You'll need to modify the edge PIX to allow secure traffic to pass though it. I think the command is something like service permit ipsec(?). Also make sure to have nat-traversal enabled ( I think service nat-t) and turn off the fixup for IKE if you have it.
  • AddThis Social Bookmark Button

Browse more Questions and Answers on Security and Networking.

Looking for relevant Security Whitepapers? Visit the SearchSecurity.com Research Library.


RSS - Discussions Help

Discuss This Answer


You must be logged-in to discuss a question. Log-in/Register