cisco pix 501 firewall configuration allow services
Posted on 2012-04-03
The question is, how do I allow pptp service and gre protocol on a Cisco Pix 501 Firewall? The pix is Version 6.3 (5) and I have access to it via the Pix Device Manager Version 3.0(4). The scenario is a TWC modem/router with a static IP with the Pix connected to it. A switch connects to the PIX and all devices are connected to the switch. Everything is running fine. What needs to be done and what I need help with, is that the client wants to put an ordinary Netgear wireless router connected to the switch. The reason for this is so they can have an isolated LAN to hook up one computer that will run a software VPN that will be used for a single purpose - to receive reports from an outside source.
Everything appears to be working, the Netgear router is on the Internet and the computer attached to it has Internet access. The Netgear and it's attached computer are using a separate IP range from the rest of the office computers. The problem is that the software VPN running on this one computer as the client side, can't connect to the outside source.
The other vendor that's setting this up is asking for PPTP and GRE to be enabled on the PIX, and that's what I need help with.
I see in the PIX setup where to add Rules, but I'm confused about how to setup Source, Destination, inside and outside. The isolated computer connected to the Netgear is IP 10.3.10.3.
Thanks for any help.