PIX Internal Routing question

[Wy0kid]

Howdy:

I have a 10 node PIX to PIX VPN network, 9 501's connecting to a 506e at our corporate office in a hub-and-spoke architecture. Each spoke is on a seperate (192.168.x.x) subnet connected via IPSEC VPN Tunnels. I need to setup routing sot that the external offices all see one another for a new internal application. What would be the best method to go with, I have Read that RIP is insecure (though I am not so worried about internal sniffing/discovery). Any suggestions would be helpful.

Chris
Network Analyst
United Communications, Inc.

 

[dopehead]

Hmm, you are talking about a fully-meshed vpn solution, i think you might have a problem with the 501's not supporting more than like 5 tunnels.

You might be able to put a router on the inside that just has one ethernet and has a default route out to the pix, and no ip icmp redirects on the ethernet.

It might work, but the real way to do this is easy vpn, in network-extension mode.

Try looking at cisco.com and search for easy vpn server/ pix
Jan

Network Systems Engineer
CCNA/CQS/CCSP

 

[Wy0kid]

Thanks, that is the solution I was trying to avoid as I have some non-cisco devices at several other locations that I need to integrate.

Chris
Network Analyst
United Communications, Inc.