Can this piece of %^$ pix 501 allow port 1723 to be open so users can connect to a Windows VPN server configured by PDM?
Outside staic IP - whatever 220.127.116.11
Win VPN server 192.168.1.10
Thanks to anybody that can help.
Note - I wnat to know if thi can be accomplished using PDM 3.0.4
This pix has to have a use other than a glorified 4 port switch
Yes you can enable PIX501 with version 6.3.5 for PPTP pass through.
static (inside,outside) tcp interface 1723 192.168.1.10 1723 netmask 255.255.255.255
fixup protocol pptp 1723
If you don't already have an access-list applied to outside interface, then you also need the following:
Then "clear xlate" after the above configuration. I also assume that you would like to use the outside interface ip address of the PIX for the translation. Otherwise, if 18.104.22.168 is actually a spare public ip address, then the above static command should say:
static (inside,outside) 22.214.171.124 192.168.1.10 netmask 255.255.255.255
Yes, it can be accomplished using PDM. But i have to apologize that i don't have a handy access to a PDM hence, i can only advise you on the configuration using CLI.
Hope that helps a little.
sh access-list (from PDM CLI)
access-list cached ACL log flows: total 0, denied 0 (deny-flow-max 256)
So what would these commands be?
Ok, since there is no existing access-list, then you can configure a new one as follows:
access-list outside-acl permit tcp any host 126.96.36.199 eq 1723
access-group outside-acl in interface outside