Multiple site to site vpn routing 1

[cammy]

Hi

We have a central office with multiple satellite offices all connected with site-to-site vpns. The central office is running a PIX 506e and there are various 506e's and 501's at remote sites. We also use the cicso vpn client at two different remote sites.

I would like to be able to route traffic between all sites including the vpn client networks. Currently the remote sites (or vpn client networks) can only see the central network(s).

I've tried adding split tunneling for the vpn clients and a route print on a client connected machine shows that a route exists to the remote site networks.

I would appreeciate any advice as to what else would need to be configured including static routes on the remote pix's and nat exemption rules.

Cammy

 

[brianinms]

You would have to upgrade the central office to a Cisco ASA.

 

[cammy]

Thanks. That will have saved me a lot of time trying to get something to work that won't work on a pix.

Cheers

Cammy

 

[tpulley]

Alternately you could establish a lan to lan tunnel between all sites.

 

[cammy]

I had tried this but it doesn't seem to work for vpn clients. Our US pix has a tunnel to the UK but vpn clients connecting to the US, can't see the UK network even though a route print on a US client connected machine shows a route to the UK network.

Thanks

Cammy