Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
634
Views
0
Helpful
5
Replies

Enabling GRE to connect MS PPTP vpn client to 871w

jay.johnson1
Level 1
Level 1

‎03-25-2007 03:02 AM - edited ‎03-03-2019 04:17 PM

I forgot to post back saying that I got my 871w to finally connect to the internet. Now I'm trying to use the "vpdn enable" process to connect the MS PPTP vpn client to the router. This is easy on a pix 501 but it's confusing as sh*t on the new 12.4 IOS the 871w ships with. I've tried the various articles that come up but I'm getting the "verying username and password" which is generally an indicator the GRE is not in play.

How do I enable GRE to connect, if anyone knows?

Jay

Certified: CCNA (R/S, Security, Voice), CCDA, CCNP (R/S)
Labels:
0 Helpful
5 Replies 5

paolo bevilacqua
Hall of Fame
Hall of Fame

‎03-25-2007 05:44 AM

Hi, the following document should guide you to the right configuration:

http://cisco.com/en/US/products/hw/routers/ps341/products_configuration_guide_chapter09186a0080518a17.html

0 Helpful

jay.johnson1
Level 1
Level 1
In response to paolo bevilacqua

‎03-25-2007 06:15 AM

Thanks for the effort. Unfortunately, this is the document I started with. I was able to configure my router for this, but it appears GRE is not making it through (I've seen this happen with SOHO routers such as Linksys).

Specifically, how do you enable GRE?

Certified: CCNA (R/S, Security, Voice), CCDA, CCNP (R/S)
0 Helpful

paolo bevilacqua
Hall of Fame
Hall of Fame
In response to jay.johnson1

‎03-25-2007 06:45 AM

Hi,

If you have another router in the path (eg broadband/adsl router, NAT/PAT), it's up to this one to make that GRE get to the 871. Perhaps you have to configure port forwarding or something there, You can't do anything about it on the 871.

0 Helpful

jay.johnson1
Level 1
Level 1
In response to paolo bevilacqua

‎03-25-2007 09:53 AM

There's no other router in the path, nor have I mentioned that, in case I wasn't clear. This connection consists of a cable modem followed by the 871w, period.

On my second connection (ADSL), I have an adsl cable modem followed by a pix 501; after the 501 is a 1720 with a 1900 switch (with enterprise OS) plugged into the Fa port; from there, I have a Linksys WRV200 connected to one of the ports on the switch (it's running as an access point for my wireless clients only).

The connection I'm concerned about is the "871w" only.

Hope this clarifies things...

Jay

Certified: CCNA (R/S, Security, Voice), CCDA, CCNP (R/S)
0 Helpful

paolo bevilacqua
Hall of Fame
Hall of Fame
In response to jay.johnson1

‎03-25-2007 12:16 PM

Hi, if the cable modem gives a public address to the 871, you should be OK, it does not NAT.

Check out, if the client is on the other side of a PIX you should configure it to let GRE pass (protocol 47). And check no other element is doing NAT too, this ping from 871 to PC must be is successful and not using private addresses.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card