[Okta Webinar] Learn how to a build a cloud-first strategyRegister Now


VPN pass-through Cisco 1721 to ISA 2004

Posted on 2006-04-28
Medium Priority
Last Modified: 2013-11-16
I need to provide a client VPN solution for my users who are traveling.

I currently have a Cisco 1721 router that sits on the perimeter.  This router provides Hardware Site-to-Site VPN connections to our branch offices.  It is my understanding that there are no client VPN options that can be used with the Cisco 1721.  At least I haven’t been able to find any.

I also have a single-homed ISA 2004 server sitting behind the Cisco 1721 that I use for Outlook Web Access (OWA) connections.  The ISA server is not part of my domain and is just in its own little “workgroup”.

How do I go about setting up client VPN connections to the ISA 2004 server that is sitting behind the Cisco 1721 router?  I am assuming that my users would use the Windows VPN client that is built into Windows XP.

All examples that I have been able to find for ISA 2004 assume that it is on the perimeter and is multi-homed.


Question by:BillBrosius
  • 2
LVL 20

Accepted Solution

calvinetter earned 2000 total points
ID: 16565399
>It is my understanding that there are no client VPN options that can be used with the Cisco 1721.
  Actually it can.  A router can have simultaneous client VPN connections as well as a site-to-site VPN.  Below is an example URL for configuring a router for both site-to-site & client VPN with IPSec:

But, if you really want to allow PPTP VPN through the router to the internal Windows server, you'll need to allow the following inbound to the server (as well as outbound from this server):
  TCP port 1723
  GRE protocol

LVL 20

Expert Comment

ID: 17874118
Do you still need help with this?

Featured Post

Configuration Guide and Best Practices

Read the guide to learn how to orchestrate Data ONTAP, create application-consistent backups and enable fast recovery from NetApp storage snapshots. Version 9.5 also contains performance and scalability enhancements to meet the needs of the largest enterprise environments.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Originally, this post was published on Monitis Blog, you can check it here . It goes without saying that technology has transformed society and the very nature of how we live, work, and communicate in ways that would’ve been incomprehensible 5 ye…
This article explains the fundamentals of industrial networking which ultimately is the backbone network which is providing communications for process devices like robots and other not so interesting stuff.
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

872 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question