joebilek
asked on
cisco asa config
Hello,
Help needed with configuring Cisco asa 5505
I want to configure one cisco asa 5505 with the following:
Be able to handle vpn both from Pc and mac and Linux with the protocol pptp and certificate
Be the company firewall with both internal and external net, + have dmz capacity
Route between internal and external net
What I need is a good description on how to do this.
One step-to-step guide is possible.
Appreciate any directions,
josef
Help needed with configuring Cisco asa 5505
I want to configure one cisco asa 5505 with the following:
Be able to handle vpn both from Pc and mac and Linux with the protocol pptp and certificate
Be the company firewall with both internal and external net, + have dmz capacity
Route between internal and external net
What I need is a good description on how to do this.
One step-to-step guide is possible.
Appreciate any directions,
josef
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
I've never heard of that, but that doesn't mean there isn't a way. A couple of points to note about this though.
1. This would not be supported by Cisco if you had problems in the future.
2. This has probably been removed in more recent versions of code.
3. I've just run a quick search against Google and can't find anything. I can only find info on PPTP passthrough which would allow another device to do the PPTP stuff for you.
4. PPTP is an OLD and deprecated technology. Whilst it is quick and easy to implement, it's also not very secure, using 56-bit DES, not 3DES or newer, more secure AES.
1. This would not be supported by Cisco if you had problems in the future.
2. This has probably been removed in more recent versions of code.
3. I've just run a quick search against Google and can't find anything. I can only find info on PPTP passthrough which would allow another device to do the PPTP stuff for you.
4. PPTP is an OLD and deprecated technology. Whilst it is quick and easy to implement, it's also not very secure, using 56-bit DES, not 3DES or newer, more secure AES.
>>Thanks. we´ve read there's a workaround to enable PPTP
Not that I'm aware of? InteraX is correct Your best choice it L2TP, unless you want to spend money on more SSL Licences.
Pete
>> And thanks for the site plug :)
Not that I'm aware of? InteraX is correct Your best choice it L2TP, unless you want to spend money on more SSL Licences.
Pete
>> And thanks for the site plug :)
ASKER