Remote Office Resource Publishing

[huchman]

I have the following:

corporate (Pix 515)----Corp Router---(pix 501)remote office
[inside: 192.168.1.0/24] [192.168.11.0/27]
[outside: 64.23.24.0/25]


I have been able to do a bunch of publications of the internal corporate resources to the outside however I am not able to publish any services (web, ftp) of the remote office through the corporate firewall to outside. I am however able to see the remote ip address of the resource (192.168.11.3) through the internal interface of the corporate pix (ping response). Also I am able to browse to the ftp and web services from corporate pc. My config for this particular portion of the scenario is as follows (identical to what is currently working for corporate addresses):

name 192.168.11.3 REMOTESRVS
access-list outside_access_in permit tcp any host 64.23.24.45 eq ftp
access-list outside_access_in permit tcp any host 64.23.24.45 eq www
static (inside,outside) 64.23.24.45 REMOTESRVS netmask 255.255.255.255

Can anyone help me with ideas on what I am doing wrong or even ways of debugging the issue.

Thank you in advance.

 

[unclerico]

the problem comes in with your crypto acl's for your L2L VPN config. the traffic is sourced from outside of your network and your crypto acl allows for only 192.168.0/24 to access 192.168.11/27 and vice versa.

I hate all Uppercase... I don't want my groups to seem angry at me all the time! =)
- ColdFlame (vbscript forum)