07-25-2007 03:43 AM - edited 03-11-2019 03:49 AM
Deal All;
(Need urgent attention)
i have configured VPDN in my PIX 525. i also implement access-list to allow certain exchange traffic and VPN traffic. but after implementing the access-list, users are not able to dial VPN connection. error 800 appear while they tyr to connect. my exchange traffic is now smooth.
please tell me which VPN port should i allow to overcome this Issue.
i need urgent reply..
regards
Soshomile
07-25-2007 04:00 AM
Hi, TCP port 1723 must be open and Protocol 47 (GRE).
07-25-2007 04:04 AM
Dear mattiaseriksson
please review it.....i already configured it like this...need your kind comments...
access-list pcc permit tcp any any eq pptp
access-list pcc permit gre any host x.x.x.x
sosho
07-25-2007 04:10 AM
That should work.
But if you use PAT you also need to enable PPTP inspection:
fixup protocol pptp
If it still doesn't work, check if any packets matches the lines in the access-list, and what the logfile gives.
I hope that helps.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: