We configured a VPN server in a DMZ off PIX 515. The server has one NIC and we can ping outside clients and inside hosts including the DC and DNS servers. However the clients are still getting NO answer. My ACL is:
access-list 100 permit gre any host x.x.x.x
access-list 100 permit tcp any host x.x.x.x eq 1723
access-list 100 permit udp any host x.x.x.x eq 1723
access-list 100 permit udp any host x.x.x.x eq isakmp
access-list 100 permit udp any host x.x.x.x eq 1701
Do I need any other ports open? Protocols? Any suggestions would be appreciated... Thx