Announcement

Collapse
No announcement yet.

Cisco PIX 525 and 520

Collapse
X
  • Filter
  • Time
  • Show
Clear All
new posts

  • Cisco PIX 525 and 520

    Hi

    I have one query. We have 2 offices one located in US and other in India. And our mangement want to create a VPN tunnel between both firewalls.

    US End 525 PIX Firewall
    Software Included:

    PIX v6.1 Software for the PIX Chassis (SF-PIX-6.1)

    India End 520 PIX Firewall:

    Software Included:

    PIX v6.3 Software for the PIX Chassis (SF-PIX-6.3)

    Please help to find out the basic hardware requirement to create VPN tunnel b/w 2 pix..

  • #2
    Re: Cisco PIX 525 and 520

    You already have it?
    I'm confused...

    The PIX can quite easily be setup to create a VPN between themselves.
    Something like this
    (and obviously this needs filling in)

    access-list “access-list name” permit ip “central network .0 range” “mask” “remote network .0 range” “mask
    nat (inside) 0 access-list “access-list name
    sysopt connection permit-ipsec
    crypto ipsec transform-set “central set name” esp-aes-256 esp-md5-hmac
    crypto map “central map name” 1 ipsec-isakmp
    crypto map “central map name” 1 match address “access-list name
    crypto map “central map name” 1 set peer “remote pix external ip
    crypto map “central map name” 1 set transform-set “central set name
    crypto map “central map name” enable outside
    isakmp enable outside
    isakmp key “password” address “remote pix external ip” netmask 255.255.255.255
    isakmp identity address
    isakmp policy “priority” authentication pre-share
    isakmp policy “priority” encryption aes-256
    isakmp policy “priority” hash md5
    isakmp policy “priority” group “DH policy 1 or 2
    isakmp policy “priority” lifetime 1000
    isakmp keepalive “seconds



    Also, the 3DES key is free so make sure they both have it.
    cheers
    Andy

    Please read this before you post:


    Quis custodiet ipsos custodes?

    Comment

    Working...
    X