Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
422
Views
0
Helpful
1
Replies

MS-VPN client(PPTP) behind of PIX not works through PIX

cjrchoi11
Level 1
Level 1

‎01-15-2005 05:45 PM - edited ‎02-21-2020 01:32 PM

I have problem the MS-VPN client through PIX firewall.

inside(MS-VPN client)--PIX--(public segment)--Internet--MS VPN server

PIX code 6.3(4) and configued as follows.

fixup protocol pptp 1723

sysopt connection permit-pptp

access-list 100 permit ip any any

acccess-list 100 permit gre any any

--> apply 100 into "outside" interface(fixup protocol will be enough but I applied to make sure)

1. VPN client put on the public segment and works

2. VPN client put on the internal segment and PAT in the PIX. not works.

3. VPN client put on the interal segment and static NAT with same public IP address which used in the step 1. not works.

why the MS-VPN client not works through PIX firewall. Any idea ?

Thanks,

Labels:
0 Helpful
1 Reply 1

supertoaster2
Level 1
Level 1

‎01-15-2005 06:56 PM

You should remove the ip any any straight-away.

You should do a static translation of the public ip addres to the private ip address of the vpn server, i.e,

static (inside,outside) outside_ip inside_ip netmask 255.255.255.255

Also you should check that the vpn client is working from the inside, before looking at the pix.

0 Helpful
Customers Also Viewed These Support Documents