Currently we have a PIX515 as our Internet Edge FW connecting to an ISA 2006 server. We also have remote VPN users who use Windows Dial-Up networking (PPTP) terminating on the PIX. Now we need to replace the PIX with an ASA5510. As this cutover needs to be transparent to the VPN users we will need to terminate the VPN connections on the ISA as the ASA does not support PPTP.
Any suggestions on the best way to allow the passthrough to the ISA server and is there any other stumbling blocks that would be in my way when I replace the PIX with the ASA?