PIX to VPN Situation

From: Abraham, Ajith (Ajith.Abraham@xxxxxxxxxx)
Date: Fri Oct 19 2001 - 09:48:30 GMT-3

• Next message: Dennis Hess: "RE: CCbootcamp Lab #1"
• Previous message: Ewing, James: "RE:"
• Next in thread: Ron Royston: "Re: PIX to VPN Situation"
• Maybe reply: Ron Royston: "Re: PIX to VPN Situation"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Dear Group:

I would like to test a situation:

INTERNET----VPN3000----INSIDE-NETWORK-----PIX-----REMOTEOFFICE
               | |
                   | |
                   |----------------------------|
                        TUNNEL THROUGH THE NETWRK

Assume that I want to allow a consulting group physically inside our
network, access to the internet without any access to our network. If they
need to access our network, they have to come in through VPN. So I thought
it would be a good thing to have a tunnel through our network between the
pix and the VPN (public interface). Is it possible. I have a pix506 and
VPN3000.

Or just do not be concerned with my diagram, instead shed some light on what
would you do to give someone inside your system, access to the internet,
without having access to your network other than through VPN. Please keep
in mind that consulting office to internet router separate cabling is a no
no. It has to tunnel through the existing network.

Thank you folks. What will life be without this study group.

Avran

• Next message: Dennis Hess: "RE: CCbootcamp Lab #1"
• Previous message: Ewing, James: "RE:"
• Next in thread: Ron Royston: "Re: PIX to VPN Situation"
• Maybe reply: Ron Royston: "Re: PIX to VPN Situation"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:22 GMT-3