Problem solved [last try: tough VPN question] 2 more questions

Hello, Thanks a lot for all the info, you guys are great!!! Problem is solved by doing: 1. Use PIX internal ip address as match address 2. Create nonat for traffic to central router I have 2 more questions (sorry, couldn't find answer) 1. How do I do redundancy between branch office (2 PIXs) an

Re: [last try: tough VPN question]

Are you using overload and port address translation with the working config? I undertsnad the issue to be with the VPNs ability to utilize layer-4 translations. I think the VPN will succeed with a singular address-based translation. Curtis Jim Bond <[EMAIL PROTECTED]> wrote: Hello, Let me re-

RE: last try: tough VPN question

lto:[EMAIL PROTECTED]] Sent: Monday, December 11, 2000 12:18 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: last try: tough VPN question Hello, Let me re-describe the situation: Central office 7100 router, site office PIX (NAT overload 1 public ip address), IPSec tunnel is establised,

RE: last try: tough VPN question

ts is supported (though I could be wrong on that). Have you tried the LMHOSTS approach? Scott -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Jim Bond Sent: Sunday, December 10, 2000 6:18 PM To: [EMAIL PROTECTED] Cc: [EMAIL PROTECTED] Subject: last try: t

last try: tough VPN question

Hello, Let me re-describe the situation: Central office 7100 router, site office PIX (NAT overload 1 public ip address), IPSec tunnel is establised, clients at site office can't logon NT domain but can do everthing else. Today, I replaced the PIX with a 3620 router (same IPSec setup), everythin