rick_me27
asked on
How to setup Cisco VPN Client to tunnel to Pix 515E
I have a couple vendors that will need to tunnel in via the VPN Client to access accounting software and etc.
I would like to configure the Pix 515E to accept a couple users in to the LAN. I understand I need to setup a
RADIUS Server. I have a Win2003 Server I will use for RADIUS. What do I need to setup on the Pix to allow
them in. Cisco documentation appears to be very cryptic to follow. Plus I didn't see anything for RADIUS setup.
Please help? I was asked to make this happen in the next two days.
I would like to configure the Pix 515E to accept a couple users in to the LAN. I understand I need to setup a
RADIUS Server. I have a Win2003 Server I will use for RADIUS. What do I need to setup on the Pix to allow
them in. Cisco documentation appears to be very cryptic to follow. Plus I didn't see anything for RADIUS setup.
Please help? I was asked to make this happen in the next two days.
ASKER
Yes I found this ealier today and plan to use it as a guide tonight when I work on this. Is there anything in particular I need to allow on the screening router. I am having a T1 installed next week and I will be bring up the 2650 infront on the Pix.
I know I need to change default route and etc but what about for VPN access?
I know I need to change default route and etc but what about for VPN access?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Thanks so much. What is ESP?
udp port 500 = isakmp phase 1
esp / tcp port 50 = encapsulating security payload - this is the actual encrypted data stream, phase 2
Unless the client is behind a NAT device, then udp 4500 = ipsec payload
Older client software behind NAT device uses udp 10000 for encrypted payload
esp / tcp port 50 = encapsulating security payload - this is the actual encrypted data stream, phase 2
Unless the client is behind a NAT device, then udp 4500 = ipsec payload
Older client software behind NAT device uses udp 10000 for encrypted payload
http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00800b6099.shtml