Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Pix vpns nat

From: "Joshua Vince" <Josh.Vince () bcgsys com>
Date: Wed, 21 Jan 2004 22:02:06 -0500
Here's what I do:

create a separate access-list for each set of vpn interesting traffic
used in the crypto map.

create a "nonat" access-list that includes all the lines from all of the
above access lists and use it for your "nat (inside) 0 access-list
nonat" command.

HTH.

Josh 

-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com] On Behalf Of Javier
Sanchez
Sent: Wednesday, January 21, 2004 5:44 AM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] Pix vpns nat



Hi all again,

i have allready figure out how to create several vpns, but now im facing
another problem. I need obviously different access lists for each vpn,
but if i try to create a new "nat (inside) o access-list X" the actual
entry on the config got replaced with the new one. Do you know how to
create several ?? Should i include the new access-list into the existig
one ??


Tia
Cheers

Javier Sanchez
Jsanchez () myalert com



_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: