Solved

Microsoft VPN Cisco Firewall Configuration

Posted on 2004-08-09
6
735 Views
Last Modified: 2010-04-12
Let's say we have the IP address 69.39.1.2. We have a Cisco 1720 router/firewall that performs NAT. I need people to be able to use the Microsoft VPN client connection to be able to login to our Server 2000 network. I thought we had things configured correctly (an outsourced IT company set things up when the company was smaller), but when I try to connect to our network I get an error. I made a screenshot. You can see it by clicking on the following link:

http://www.mckeough.com/screenshot.jpg

The IP that I sprayed out in the screenshot is the outside IP of our Cisco. In other words it's the one you can ping from anywhere in the world.

I've connected to our servers via a microsoft VPN internally, so I know this error isn't a security negotiation error with our server. I think it has to do with our Cisco not being configured to handle PPTP or something like that. However I'm not experienced with Ciscos, so I'm not sure. If anyone wants me to, I know enough to pull up configuration information on our router.
0
Comment
Question by:mckeough
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 23

Expert Comment

by:Tim Holman
ID: 11757384
0
 

Author Comment

by:mckeough
ID: 11761785
I'm pretty sure I just need to configure our Cisco to forward PPTP connection requests to our server. How do I do that?
0
 

Author Comment

by:mckeough
ID: 11762881
I read the link that was posted. It doesn't apply to this situation. Also, does anyone know about Cisco's client software? Maybe we need to use that.
0
Building an interactive eFuture classroom

Watch and learn how ATEN provided a total control system solution including seamless switching matrix switch, HDBaseT extenders, PDU, lighting control to build an interactive eFuture classroom.

 
LVL 23

Accepted Solution

by:
Tim Holman earned 500 total points
ID: 11766559
If you configure the Cisco router to allow GRE (protocol 47) and PPTP (1723) then PPTP clients should work behind NAT without any problems.

http://cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800949c0.shtml
0
 

Author Comment

by:mckeough
ID: 11771948
Tim, that looks like what I'm looking for! So, if I configure GRE and PPTP, I can use the regular Microsoft VPN client, right? I'm just making sure because I know Cisco has their own thin client as well.
0
 
LVL 23

Expert Comment

by:Tim Holman
ID: 11773361
Yes - that's right.
0

Featured Post

[Live Webinar] The Cloud Skills Gap

As Cloud technologies come of age, business leaders grapple with the impact it has on their team's skills and the gap associated with the use of a cloud platform.

Join experts from 451 Research and Concerto Cloud Services on July 27th where we will examine fact and fiction.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Like many others, when I created a Windows 2008 RRAS VPN server, I connected via PPTP, and still do, but there are problems that can arise from solely using PPTP.  One particular problem was that the CFO of the company used a Virgin Broadband Wirele…
If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…

623 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question