Wow this is real weird I had to do nothing for this to work outside of a normal config. One thing you need to make sure of is that on the client you have this checked
Options Properties Enable Transparent tunneling That allows the client to work with nat/pat. I vpn in everyday from behind a pix into my corporate office and I do not have no special config on my pix to allow this traffic. -----Original Message----- From: Richard Tufaro [mailto:[EMAIL PROTECTED]] Sent: Tuesday, August 20, 2002 2:18 PM To: [EMAIL PROTECTED] Subject: VPN Through PIX 6.2(2) [7:51761] Hey all, quick question on configuring a VPN connection from an internal connection, to an external connection. Simply put how you do it? Iv got a host on the inside that is using the Cisco VPN client software to create a tunnel to another company. Iv got to the point where he authenticates and creates the tunnel by inserting: access-list inside_access_out permit tcp 10.0.0.0 255.0.0.0 any eq 10000 (hitcnt=3) access-list inside_access_out permit udp 10.0.0.0 255.0.0.0 any eq isakmp (hitcnt=2) access-list inside_access_out permit esp 10.0.0.0 255.0.0.0 any (hitcnt=80) but the problem is once he is authenticated and appears to be inside (there) network he is unable to connect to anything, DNS or other. Now from home and dial-up its fine. Iv looked around and Cisco is saying that it was not even possible to create the connection with PAT (if I read correctly). Do I need to do something else to allow this host to be able to connect to nodes internal to the remote network? Anyone have this working???? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=51862&t=51761 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]