VPN PIX-Checkpoint

Discussion in 'Cisco' started by Goggen, Mar 25, 2008.

  1. Goggen

    Goggen Guest

    I found an document on the cisco web that describes how to do this. It
    looks pretty much ok, but I have one question:
    Q: By applying the crypto map on the outside interface, does this prevent
    other traffic (acl's) from going out on the outside interface and not in the
    IPSEC tunnel and to a different address/network?

    Geir
    Goggen, Mar 25, 2008
    #1
    1. Advertising

  2. In article <>,
    Goggen <> wrote:
    >I found an document on the cisco web that describes how to do this. It
    >looks pretty much ok, but I have one question:
    >Q: By applying the crypto map on the outside interface, does this prevent
    >other traffic (acl's) from going out on the outside interface and not in the
    >IPSEC tunnel and to a different address/network?


    No.

    However, any traffic which matches the crypto map and which is found
    to have arrived "directly" (instead of via the VPN) will be logged and
    dropped.

    Any traffic that does not match the crypto maps will not be affected
    by the existance of the VPN.
    Walter Roberson, Mar 25, 2008
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. vuu-g6c
    Replies:
    0
    Views:
    695
    vuu-g6c
    Aug 17, 2004
  2. Darren Green

    Cisco Pix 6.3(5) to Checkpoint FW VPN

    Darren Green, Feb 10, 2007, in forum: Cisco
    Replies:
    0
    Views:
    407
    Darren Green
    Feb 10, 2007
  3. Replies:
    5
    Views:
    1,281
  4. Ned
    Replies:
    0
    Views:
    353
  5. Ned
    Replies:
    0
    Views:
    536
Loading...

Share This Page