10-06-2006 08:08 AM
can someone pls tell me whether we can use cisco vpn client on a analog ppp connection and terminate it on a pix which is not running ppp . if this works then why do we need L2tp/ipsec vpns. can someone pls tell me something abt this. it;s very urgent.
regards
sebastan
Solved! Go to Solution.
10-12-2006 10:11 AM
Sebastan,
If I understand your question correctly, you are talking about using PPP to initially get an IP Address from your Service Provider and then use the VPN Client to VPN into your Pix Firewall. If then, yes this possible.
To name few reasons why PPTP or L2TP/IPSEC is used instead of Cisco VPN Client are:
1. Because companies have been using PPTP or L2TP/IPSEC solution for sometime and are in the process of migrating to Cisco VPNs
2. Do not want to install any vpn client software on the PC's
3. Do not want to pay for VPN Client Software Licensing
Let me know if it helps.
Regards,
Arul
10-12-2006 07:42 AM
This URL should help you:
http://www.cisco.com/en/US/tech/tk801/tk703/technologies_tech_note09186a0080094586.shtml
10-12-2006 10:11 AM
Sebastan,
If I understand your question correctly, you are talking about using PPP to initially get an IP Address from your Service Provider and then use the VPN Client to VPN into your Pix Firewall. If then, yes this possible.
To name few reasons why PPTP or L2TP/IPSEC is used instead of Cisco VPN Client are:
1. Because companies have been using PPTP or L2TP/IPSEC solution for sometime and are in the process of migrating to Cisco VPNs
2. Do not want to install any vpn client software on the PC's
3. Do not want to pay for VPN Client Software Licensing
Let me know if it helps.
Regards,
Arul
10-13-2006 01:35 AM
hi arul thanks a lot. ok so in the initial days when vpn client solution and all were not available they had to use ppp solution wherein they had to dial in the nas of the company costing a lot for ISD call charges. so L2TP was the solution to carry the pp connection from isp nas to the corporate nas for security it uses ipsec along with it right.
but with vpn client i guess it more easy no need to create local security policy on windows and it also doesn;t support split-tunneling as well.
thanks for clarifying my doubt.
regards
sebastan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide