Firewall Wizards mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Pix VPN endpoint and split-tunnel

From: Josh Welch <jwelch () buffalowildwings com>
Date: Thu, 13 Oct 2005 19:26:12 -0500
Paul Melson wrote:

-----Original Message-----
Subject: RE: [fw-wiz] Pix VPN endpoint and split-tunnel


That's pretty much what I read.  I thought they may have provided a fix by
now. As for 
the workarounds, this is for a business partner network and I've already
presented them 
with the "spend" option and they don't want to.

Another reply I got here from Simon expressed the possibility that PIX 7.x
supports 
this. (split horizon?)


RIPv2 (and therefore split horizon routing) are available as part of Cisco
ASA 7.0.  It's my understanding that this is actually an adaptation of the
VPN3K software.  But unless something has changed recently, this software
will only work on the ASA 5500 models, which will still cost your business
partner money.  Sorry, no free lunch for them.

PaulM
I've recently been playing with 7.0(2) on a 515E previously running 6.3(3). It requires a memory upgrade, but you can upgrade a 5xx series PIX to version 7.x of the PIX OS. 

Josh
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
Previous By Date Next
Previous By Thread Next

Current thread: