Re: cisco pix VPN routing issues

On 26 Feb, 14:50, rober...@xxxxxxxxxxxx (Walter Roberson) wrote:
In article <1172513635.767863.250...@xxxxxxxxxxxxxxxxxxxxxxxxxxxx>,

inventica <vfedose...@xxxxxxx> wrote:
I've got 4 site-to-site VPN tunnels to PIX 515E in my central office
(A). From this office I can ping branch offices B, C and D. From
offices B, C and D I can also ping my central office A. However, my
problem is that I can't ping office C from office B or office D from
office C so on.
He is the question: is there a way to configure vpn routing for
packets to travel from office B to office C via central office A? I
know I can configure a vpn link between B and C but it's not an ideal
scenario for me.

You need PIX 7.x for this;

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_config...

Very cool Walter. I'm more on the network side as opposed to vpn/
security, so I appreciate the link as well.

"Note: In PIX version 7.2 and later, the intra-interface keyword
allows all traffic to enter and exit the same interface, and not just
IPsec traffic."

Do previous versions allow IPsec traffic to do this, as it kind of
suggests that 'other traffic' is the addition in this version?

.