Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
260
Views
0
Helpful
2
Replies

Using Cisco VPN and/or L2TP from Behind a PIX 501

eric.davis
Level 1
Level 1

‎04-03-2003 10:27 AM - edited ‎02-21-2020 12:27 PM

Confgiuration: PIX 501 (6.21) Cable Modem, Single IP, DHCP on the Outside Interface, using PAT

I am trying to use the Cisco VPN Client and MS L2TP from the inside of the firewall. What must I turn on or open to pass the traffic properly through the firewall?

Thank you.

Labels:
0 Helpful
2 Replies 2

gfullage
Cisco Employee
Cisco Employee

‎04-03-2003 08:05 PM

Upgrade the PIX to 6.3 which has support for one IPSec session thru PAT. Then enable the command:

> fixup protocol esp-ike

and your VPN client connection should work fine. Nothing you can do about the L2TP session though, these don't work thru PAT in the PIX.

0 Helpful

afakhan
Level 4
Level 4

‎04-03-2003 08:16 PM

Hi,

You need to make sure that you are not PATing that client IP address, and open up ESP and UDP 1701 traffic for the static.

Thx

Afaq

0 Helpful
Customers Also Viewed These Support Documents