• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 568
  • Last Modified:

How to connect remote Windows XP clients to PIX 525 using Windows inbuilt VPN.

I want to be able to configure Windows XP clients to be able to VPN to a Cisco PIX 525. Unfortunately the user community at this particular company are VERY computer illiterate and putting the Cisco VPN client in front of them may cause a heart attack. All the users have DSL and can cope with connecting their machines, and are also able to cope with the concept of double clicking a Windows DUN connection Icon.
I have sat in front of Google for a solution on using XP's built in VPN support, but there are so many results showing out of date or conflicting solutions. I just need the clients to be able to be able to browse the Windows network in the office. There is a Windows 2003 standard edition server there that runs AD and file sharing. What is the best solution and the best PIX configuration?

Thanks Guys

Kevin
0
kjorviss
Asked:
kjorviss
  • 3
  • 2
1 Solution
 
grbladesCommented:
0
 
kjorvissAuthor Commented:
Hi

I saw that example, but what put me off that is I will never know what IP address the client will be assigned. Most of these remote workers just have standard DSL with DHCP assigned addresses from whatever ISP they are using. In addition to that the company has the PIX connected to a BellSouth DSL line with a static IP so the config is one public address that has all the outgoing connections via PAT on that address. Does that mean I could dispose of the router portion of the Cisco example and use the public IP on the outside interface of the PIX instead?

Thanks

Kevin
0
 
grbladesCommented:
Don't worry about the fact that the example shows the IP address of the client. This IP address is not specified anywhere in the configuration. They only list it so you can correlate it's IP address from the example 'debug' output.

The router in your case will be the router belinging to your DSL provider. You just put the public internet address on the outside of your PIX and put the default gateway in the 'route' command as in the example.
0
 
kjorvissAuthor Commented:
Thanks for that, I can go to bed now! I thought that  a static client address was dependent on that example which is why I ignored it. So I can use the same address that is being used for the outgoing connections or would I use another free address from the ISP just for the PPTP connections?
0
 
grbladesCommented:
For the pptp address pool you can use any private address range you like. I would avoid 192.168.0.x and 192.168.1.x as these are commonly used by home DSL routers and if you used these ranges it could cause problems. I would just pick a random number between 5 and 250 and use 192.168.random_num.0/255.255.255.0 as the address range.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

Join & Write a Comment

Featured Post

Cloud Class® Course: CompTIA Healthcare IT Tech

This course will help prep you to earn the CompTIA Healthcare IT Technician certification showing that you have the knowledge and skills needed to succeed in installing, managing, and troubleshooting IT systems in medical and clinical settings.

  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now