Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have a PIX 506e set up for VPN connectivity at a remote branch office. Users from my main branch office cannot connect to it when they they are sitting at their desks. In other words, the main corporate office firewall is blocking the VPN connect...
A very intresting problem. I have a TACACS ver 3.2 system in place. I currently am able to authenticate agains it with no problem using SSH & Telnet. However, as soon as I try to use http, the authentication is never succesful (I get prompted for ...
From the PIX Command Reference (http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/cmdref/gl.htm#wp1027312isakmp key address To configure a pre-shared authentication key and associate the key with an IPSec peer address or host nam...
This is more of a conceptual question I think. Recently I was called in to a client site to install a new 2600 Router, PIX firewall, and an IDS system (along with a bunch of other server side work). Anyways, I happened to do a few packet captures a...
Forgive me if this has been covered, I looked back a few months and wasn't able to find anything on it. I set up a PIX tonight and at the end the customer asked me to have it authenticate VPN users against his Active Directory database, so I added i...
Man, i wish I had some way to go back and change the rateing to whatever the highest is. Enabling NAT-T via udp port 4500 like you suggested proved to be the missing ingredient. Thanks for that.
(Edited: I thought you were posting this in reply to my original question, so i got a bit confused. However, I'll leave the post below just because someone might glean something..never can tell)When talking about a Pix to Multi-pix VPN configuratio...
Hey, I did get it figured out. Basically, you can't authenticate PPTP users agains Microsoft IAS (any version) because it doesn't support a specific microsoft propreitary attribute that the PIX is looking for in the reply(figures). However, if your...
I noticed that you had a lot of experience getting IAS and aaa to be nice to each other using Windows 2000. I don't suppose you've had much experience getting it going in Windows 2003 IAS. Currently, I have a very simple project that I'm working on...
