You need to avoid NAT for the internal traffic destinated to the internal
PIX address (IPsec session). For example, if your internal address is
1.1.1.0 and the PIX inside address is 172.16.1.0:
On your router:
ip nat inside source route-map Deny-nat ...
!
route-map Deny-nat permit 10
match ip a
Chris
The Cisco TAC website has a number of examples.
>From www.cisco.com
Technical Support
-> Technology Support
-> Security & VPN
-> IPSEC
-> Samples and Tips
Or just go to
http://www.cisco.com/cgi-bin/Support/browse/psp_view.pl?p=Internetworking:
IPSe
Hi all, Can anyone help me with a problem I am having trying to create a
VPN on an 801 to a PIX firewall. I have other devices working fine but
the isdn router does not seem to want to encrypt the traffic I specified
in the access list. I have applied the cypto map to both the dialer and
the bri i
3 matches
Mail list logo