Search results for query: *

You shouldn't need to open up anything other than the h323 port to whatever machine you want to connect to with net meeting. You must also have the fixup protocol h323 statement in your config. The way the netmeeting protocol works (in a nutshell) is a control message is sent over the h323...

If you have a PIX 515 on your end, and one of the interfaces is not being used, you can do it! The problem is that the PIX will not intelligently route traffic, and the traffic from your VPN client that is destined for the ASP would have to be redirected out the same interface that it came in...

Actually, I have solved it, and the answer is that this is a possible solution. Cisco TAC is not supportive and doesn't seem to acknowledge it, but here goes the description in a quick way. First, rBorel and daWookie, you guys are right in saying that the pix can't route stuff back out the...

Dawookie, Thanks for the advice, the PIX complains about having another interface on the same network as the outside interface... Is the solution to simply disguise it behind another subnet mask? Static routes necessary? Thanks, Jcanuk

Just a quick is this possible scenario. 10.2.2.0 DMZ | 10.1.1.0----PIXA===VPN Tunnel====PIXB-----10.1.7.0 || || VPN Client I have the Cisco VPN client 3.x. I would like to create a vpn to pix...

Thanks Bwilliam, Actually I am insane, it turned out to be a problem on the TCP/IP stack of the novell server that was out there... replaced it with a Wxp box for testing and everything worked perfectly. Thanks for the advice.

Hopefully someone can help with this issue.. It has been nagging on me a while now. Network setup is 10.2.2.0/24 (DMZ) Internal | 10.1.1.0/24 ----------PIX------Internet I am trying to set up a simple static translation from 10.2.2.2 to an external address...

Marhoun, have you actually got split-tunnel working with those commands? If so we need to talk, you may be a big help to me. Thanks, Jcanuk

Here is my config.... Details of my tests follow it. PIX Version 6.2(2) nameif ethernet0 outside security0 nameif ethernet1 inside security100 nameif ethernet2 dmz security10 access-list 110 permit ip 10.1.1.0 255.255.255.0 10.1.7.0 255.255.255.0 access-list nonat permit ip 10.1.1.0...

Do you mean giving it a different internal or external ip address? If a different external address solves the problem, then you may have an arp table issue with the isp hardware just before your pix. Consider clearing the arp tables of your switches, and also contacting your isp and requesting...

Hi, I'm trying to set up a VPN via the cisco 3.x client to a pix 515e running 6.2. I'm running into problems with the split-tunneling feature and was wondering if anyone had experience implementing it. Basically, with split tunneling turned off, as expected, I can connect to all hosts inside...

Yizhar, Synyasee, What if Silene used the split-tunneling feature of the VPN client? At least on client 3.6.3, this will allow you to define an encryption domain for your "tunneled traffic" and the rest is sent unencrypted to your default gateway. At least that is my understanding...