Cisco PIX 501 PPTP VPN question ???

Posted on 2005-05-17
Last Modified: 2013-11-16
I already setup the Cisco PIX 501 PPTP VPN and work well in client to site access, but I have the problem of ouside VPN client to client access.
Inside LAN:
When user A get PPTP IP is and user B get, HOW CAN I enable user A to access user B through the VPN tunnel. I sure MS Route and Remote Access server can.
Question by:kennycpu
    LVL 19

    Accepted Solution


    I don't think what you want to do is possible as the PIX will not allow traffic out the same interface it came in - ie you are coming in from the outside interface - you cannot route traffic back out the same interface to a different vpn client.  Before you take that as gospel, hopefully someone else can clarify as I have searched for documentation re same but have not come up a definitive answer.
    LVL 5

    Expert Comment

    Nodisco is correct. The PIX does not route traffic on the same interface and the two remote clients cannot communicate with each other.
    LVL 79

    Expert Comment

    3 votes now for - can't do it. Not with a PIX.
    Only way for you to do that would be to setup a RRAS server behind the PIX with a dedicated public IP address, let the clients connect to the RRAS server and let "it" do the routing between clients.

    Featured Post

    PRTG Network Monitor: Intuitive Network Monitoring

    Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

    Join & Write a Comment

    The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
    Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
    This video is in connection to the article "The case of a missing mobile phone (". It will help one to understand clearly the steps to track a lost android phone.
    Internet Business Fax to Email Made Easy - With eFax Corporate (, you'll receive a dedicated online fax number, which is used the same way as a typical analog fax number. You'll receive secure faxes in your email, fr…

    733 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    22 Experts available now in Live!

    Get 1:1 Help Now