Hi All, Can somebody help me out on configuring one of these setups? I have research the web and have documentation on getting Pix to work with Sonicwall using IKE. Basically one side would have a sonicwall while the other would be the Pix. That would work but my boss wants to use 2 Sonicwall boxes and wants one of them to be on the Pix's DMZ. My question is would this be possible. Sonicwall A would be at another company's A site which is providing me with a 192.168.100.1 for our Sonicwall for the LAN and a 205.202.22.12 for the WAN. Company A has given us an internal 194.100.1.230-249 range with 194.100.1.250 being the default gateway for our PCs. For pcs to go out through the VPN to our 192.168.1.x network, I would request that they put a route on their gateway which I think is their firewall to route 192.168.1.x traffic to the our sonicwall box. On the other end is a Pix Firewall with 3 interfaces, inside,outside, and dmz. All traffic going to the outside is Port Address Translated to a specific ip address. The DMZ is in the 172.22.100.x network. The pix is currently setup to do nat from the inside to the dmz via nat command. The Inside network is using private ip address network of 192.168.1.x. Is there a way to allow traffic that is originating from 192.168.1.x and going to 192.168.100.x to be allowed to reach the Sonicwall via the DMZ interface? I know you can do a route 192.168.100.x via 172.22.100.10(sonicwall's ip address on the dmz) but would this work? Would the system on the other side be able to figure out how to route the VPN traffic back? There's an access-list command nonat that I could use but I am not sure how I could get it to work here. Any ideas on whether this is possible or anyone who has done something like this?
Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26195&t=26195 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
