Go Premium for a chance to win a PS4. Enter to Win

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 740
  • Last Modified:

Microsoft VPN Cisco Firewall Configuration

Let's say we have the IP address 69.39.1.2. We have a Cisco 1720 router/firewall that performs NAT. I need people to be able to use the Microsoft VPN client connection to be able to login to our Server 2000 network. I thought we had things configured correctly (an outsourced IT company set things up when the company was smaller), but when I try to connect to our network I get an error. I made a screenshot. You can see it by clicking on the following link:

http://www.mckeough.com/screenshot.jpg

The IP that I sprayed out in the screenshot is the outside IP of our Cisco. In other words it's the one you can ping from anywhere in the world.

I've connected to our servers via a microsoft VPN internally, so I know this error isn't a security negotiation error with our server. I think it has to do with our Cisco not being configured to handle PPTP or something like that. However I'm not experienced with Ciscos, so I'm not sure. If anyone wants me to, I know enough to pull up configuration information on our router.
0
mckeough
Asked:
mckeough
  • 3
  • 3
1 Solution
 
Tim HolmanCommented:
0
 
mckeoughAuthor Commented:
I'm pretty sure I just need to configure our Cisco to forward PPTP connection requests to our server. How do I do that?
0
 
mckeoughAuthor Commented:
I read the link that was posted. It doesn't apply to this situation. Also, does anyone know about Cisco's client software? Maybe we need to use that.
0
WatchGuard Case Study: NCR

With business operations for thousands of customers largely depending on the internal systems they support, NCR can’t afford to waste time or money on security products that are anything less than exceptional. That’s why they chose WatchGuard.

 
Tim HolmanCommented:
If you configure the Cisco router to allow GRE (protocol 47) and PPTP (1723) then PPTP clients should work behind NAT without any problems.

http://cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800949c0.shtml
0
 
mckeoughAuthor Commented:
Tim, that looks like what I'm looking for! So, if I configure GRE and PPTP, I can use the regular Microsoft VPN client, right? I'm just making sure because I know Cisco has their own thin client as well.
0
 
Tim HolmanCommented:
Yes - that's right.
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

  • 3
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now