I have got this working by configuring a VPN pool on the Pix, and assigning these addresses to the vpn clients. IE your home pc will have an DHCP address from your ISP, but also an "internal" IP address assigned from the Pix VPN pool. The Pix sees traffic as going from your network to this "internal" addres, and visa versa, so you only need to include the VPN pool addresses in your ACL, of what traffic to envrypt!
Cheers Troy [EMAIL PROTECTED] wrote: > > I have a question regarding the configuration of manual IPSEC. > I have to > create an access list to define the traffice to protect. > > I want to connect to my office network from home. I have a DHCP > assigned > address from my ISP so I can't specify a peer address. So I > will use isakmp > key ****** address 0.0.0.0 for now. > > Now as far as the traffic goes. Should I specify protect all > traffic or > what? What happens when I have multiple remote users? I would > like the PIX > to be the end point so I can travel over my entire network > (email, shares, > printers, etc). I'm a little confused on this.. > > Thanks in advance... > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=64055&t=64016 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
