?
Solved

Cisco PIX VPN Question

Posted on 2006-06-06
3
Medium Priority
?
472 Views
Last Modified: 2010-03-19
Hello,

We have a Cisco PIX 501 and last night, I went through and attempted to create an PPTP VPN group to test remote access.  I selected MSCHAP for authentication and created a local user in the database.  I went home to try it and it wouldn't work but I know why!!!!  The default config on the PIX deny's all inbound connections.  I'm not much of a networking guy so I was wondering what access lists do I need to add to the PIX which will allow me to connect via PPTP (Microsoft) as well as the Cisco VPN client (I created one of those groups too).

Many thanks.....by the way, I don't have access to my config file right now which is why I can't post it.

0
Comment
Question by:msadexchman
  • 2
3 Comments
 
LVL 79

Expert Comment

by:lrmoore
ID: 16843236
You can enable PPTP with sysopt command that bypasses any inbound acls and permits the traffic:

 sysopt connect permit-pptp

0
 

Author Comment

by:msadexchman
ID: 16843265
Great!  Can I do something similar to allow me to use IPSEC and the Cisco VPN Client?
0
 
LVL 79

Accepted Solution

by:
lrmoore earned 500 total points
ID: 16843874
Yep.
 sysopt connect permit-ipsec
0

Featured Post

VIDEO: THE CONCERTO CLOUD FOR HEALTHCARE

Modern healthcare requires a modern cloud. View this brief video to understand how the Concerto Cloud for Healthcare can help your organization.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article is a collection of issues that people face from time to time and possible solutions to those issues. I hope you enjoy reading it.
Tech spooks aren't just for those who are tech savvy, it also happens to those of us running a business. Check out the top tech spooks for business owners.
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Monitoring a network: why having a policy is the best policy? Michael Kulchisky, MCSE, MCSA, MCP, VTSP, VSP, CCSP outlines the enormous benefits of having a policy-based approach when monitoring medium and large networks. Software utilized in this v…

850 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question