Question : Cisco PIX client VPN question

Hello,

I have a pretty complex PIX configuration with multiple legs.

What I want to do is allow client VPN from a guest wireless network (security level 1) to the inside of the network (security level 100). The outside interface is security level 0.

Currently the VPN works from the outside no problem. The guest wireless is hooked up to an interface on the PIX and can get to the internet only, not any of the higher security interfaces.

Can what I want to do be done? When I try to VPN from a laptop on the wireless network, I get the following in the PIX log:

Jan 20 2009 12:45:08: %PIX-7-710005: UDP request discarded from 192.168.20.5/1313 to GuestWireless:yy.yy.yy.yy/500


yy.yy.yy.yy is the global interface.

Let me know if there are specifics you want to see from the configuration. Like I said it is a very large configuration and I don't want to have to post the whole thing.

Thanks,

Dave

Answer : Cisco PIX client VPN question

Could it have something to do with the fact that the guest wireless connections are NATed to the same global (outside interface) that I am trying to VPN to?

I'm stumped and searches on Cisco's site aren't helping....