Link to home
Start Free TrialLog in
Avatar of kittensizedbulldozer
kittensizedbulldozer

asked on

PPTP from a 7507 Cisco Router to a Cisco 506E PIX

I'm not sure how elementary this is, but here is the scenario:

We switched ISPs not too long ago, our original configuration was a C2600 router and the 7507 router both had a PPTP tunnel between this site and our Washington offices.

We're currently trying to get the 7507 Router to talk to the newly installed 506E firewall that is installed here at this site. My contact in Washington tells me the 506E doesn't support PPTP and that the 7507 doesn't support the new AES encryption schemes, so we're stuck. Is this really the case? What I need to do is basically allow a PPTP tunnel between the 7507 and the 506E, note it's not connecting to anything behind either device, the 506E and 7507 are both endpoints. Is there a possibility this can't be done?

The old Cisco router basically had an interface called TunnelX with the IP source of our old router, tunnel destination on their end and ACLs to allow access through to their internal IPs.

Sorry this sounds so vague but I'm at a loss as to where to start...
ASKER CERTIFIED SOLUTION
Avatar of grblades
grblades
Flag of United Kingdom of Great Britain and Northern Ireland image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
SOLUTION
Avatar of Les Moore
Les Moore
Flag of United States of America image

Link to home
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
Start Free Trial
Avatar of kittensizedbulldozer
kittensizedbulldozer

ASKER

Yeah just so you know I'm looking into grblades' suggestions still, I'm just super swamped with everything else that has been going wrong this week so I will look the solutions over and get back to you guys as to whether it was helpful or not. Just glancing over, the second article looks like maybe what we're trying to attempt, but part of my issue right now is getting a straight answer out of the Washington office as to how exactly they want us to connect to them. :-)
We ended up re-configuring our 2600 into the network in order to handle the endpoints, so we're good. Thanks anyways...someday we'll probably take the 2600 and take another swing at it, so I'll reference those articles grblades mentioned then. Thanks guys.