?
Solved

Cisco VPN client via ISA 2006

Posted on 2008-10-31
6
Medium Priority
?
1,263 Views
Last Modified: 2013-11-16
I need to configure ISA 2006 to allow "Cisco VPN client" connections from Internal network to external destination. The connection will go from internal PC (XP Prof) through ISA and PIX to Internet.

I found some pages with "how to", e.g. http://www.elmajdal.net/ISAServer/How_To_Allow_Cisco_VPN_Client_To_Connect_Through_ISA_Server.aspx. I want to ask if this is enough or if there are some other steps that needs to be done / configured.
0
Comment
Question by:haldoxp
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 3
  • 3
6 Comments
 
LVL 51

Assisted Solution

by:Keith Alabaster
Keith Alabaster earned 2000 total points
ID: 22854933
It works for me. Note the points at the bottom though.

You must be a SecureNAT presentation to the ISA - ie ISA is the default gateway for the client pc's.
You need to disable the ISA firewall client (if you have it installed plus disable the MS firewall on the PC.
0
 
LVL 3

Author Comment

by:haldoxp
ID: 22861773
Thanks. Will let you know the results on Tuesday.
0
 
LVL 3

Accepted Solution

by:
haldoxp earned 0 total points
ID: 22874848
After I configured ISA server according to the above web page the connection was blocked by default policy. In monitoring I saw "Unidentified IP Traffic" on port 10000. After a quick google search I found that I need to configure new Protocol definition for this port (TCP, outbound, port 10000) and put this new protocol definition into firewall rule.

Now the connection is working great. Thanks Keith.
0
Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 
LVL 3

Author Comment

by:haldoxp
ID: 22875714
One issue. It is working with "All Users", but when I set another group, the connection stops working. All members of this group cannot connect. Any idea?
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 22878592
Different question - no offence.
0
 
LVL 51

Expert Comment

by:Keith Alabaster
ID: 22909206
No problem here ; thanks :)
Keith
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Wikipedia defines 'Script Kiddies' in this informal way: "In hacker culture, a script kiddie, occasionally script bunny, skiddie, script kitty, script-running juvenile (SRJ), or similar, is a derogatory term used to describe those who use scripts or…
So the following errors occurs in 2 ways that I am aware of at this stage, and you receive one of the following error messages: ERROR 1. When trying to save a rule: No Web listener is specified for the Web publishing rule Autodiscovery Publishin…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…
Suggested Courses

770 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question