sckdesign
asked on
(Uber Newbie) VPN with Cisco PIX
Greetings Group:
I appologize for the tremendously easy question here ... but I know
nothing about real firewalls and routers. I know a little bit about
home Netgear ones (which, aparantly, doesn't help at all).
I'm trying to set up a VPN to our network so I can access our intranet
at home. I was able to do it with a dial-up connection very easily
(thanks to Win2K Wizards), but I need some real speed to be
productive.
The firewall that we have is a cisco PIX firewall and I've read the
manual, but for the life of me i can't seem to figure it out. I was
going to start playing around with commands, but I really dont want to
mess it up.
What should I do to allow all traffic from my IP at home to access the
intranet at work? Or atleast allow my IP at home to get past the
firewall? Is there a easy command I can imput into the Cisco PIX terminal?
Thanks, Alex Papadimoulis
I appologize for the tremendously easy question here ... but I know
nothing about real firewalls and routers. I know a little bit about
home Netgear ones (which, aparantly, doesn't help at all).
I'm trying to set up a VPN to our network so I can access our intranet
at home. I was able to do it with a dial-up connection very easily
(thanks to Win2K Wizards), but I need some real speed to be
productive.
The firewall that we have is a cisco PIX firewall and I've read the
manual, but for the life of me i can't seem to figure it out. I was
going to start playing around with commands, but I really dont want to
mess it up.
What should I do to allow all traffic from my IP at home to access the
intranet at work? Or atleast allow my IP at home to get past the
firewall? Is there a easy command I can imput into the Cisco PIX terminal?
Thanks, Alex Papadimoulis
Set up a vpn connection to a RRAS server at your work, and allow port TCP/1723 through the PIX. That is, if you are authorized.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks, that was very helpful. If I set it up this way, would all internet traffic (www.yahoo.com, etc) be routed through this VPN connection?
What do you mean by "you can always setup the PIX to terminate the VPN tunnel, then you wouldn't need a server" Would this be a router-to-router connection?
Thanks
What do you mean by "you can always setup the PIX to terminate the VPN tunnel, then you wouldn't need a server" Would this be a router-to-router connection?
Thanks
All traffic will only be routed through the VPN if you check the box "use default gateway on remote network"
You can terminate client's VPNs on the PIX instead of the server. There are trade-offs in doing it, though.
http://www.cisco.com/warp/public/110/pptppix.html
You can terminate client's VPNs on the PIX instead of the server. There are trade-offs in doing it, though.
http://www.cisco.com/warp/public/110/pptppix.html
ASKER
Thanks! I appreciate the quick answer.