I am not familiar with Cisco firewall, I need your help to figure this out.

I am using cisco pix 506E, The structure of my network is like this Internet-->ISP router-->switch --->firewall-->LAN

the LAN address range is 192.168.1.0/24 (default), firewall ip is 192.168.1.1

1. Now we established an Internet site-to-site VPN with some other server through firewall.
2. The address range assigned to us is 192.168.52.40/29. Because all the machines in LAN have an address like 192.168.1.*, so they cannot access the VPN (ping the other side).
3. I tried to do a static NAT to one of the machine (from 192.168.1.2 to 192.168.52.41), then it can ping the other side. But at the same time, it cannot ping 192.168.1.1, that means it cannot access Internet.
4. The other side doesn't allow split tunneling. Is there a way to configure the firewall so that the machine can access the VPN while accessing the Internet? How to achieve this? edit routing table? What is your suggestion?

Thanks a lot for your help!

You might want to consider asking in the security forum....

Topic moved.

_________________
Find networking-forum.com on Facebook, LinkedIn, Twitter, Google+,or subscribe to the site's RSS feeds.