PPTP Support/Configuration on PIX 515 with Pixos 8.0.3

Unanswered Question
May 20th, 2008
User Badges:

Hi All;


I have been trying to configure a PIX 515 with Pixos 8.0.3 to accept PPTP VPN connection and i have been failing miserably! Maybe this is only possible on version 6.x and not on 8.x.


I have been able to configure L2TP with IPSec and that is working well, but what i need is PPTP without IPSec, so a windows application can connect to it, my current configurations is as follows:


Thank you


Lucio


aaa-server vpn protocol radius

aaa-server vpn host 192.168.1.10

key windows

http server enable

http PublicHomeNetwork 255.255.255.0 outside

http 192.168.1.0 255.255.255.0 dmz

http 172.16.1.0 255.255.255.0 inside

http 10.10.10.1 255.255.255.255 inside

http 192.168.1.0 255.255.255.0 inside

crypto ipsec transform-set TRANS_ESP_3DES_MD5 esp-3des esp-md5-hmac

crypto ipsec transform-set TRANS_ESP_3DES_MD5 mode transport

crypto dynamic-map outside_dyn_map 20 set transform-set TRANS_ESP_3DES_MD5

crypto map outside_map 20 ipsec-isakmp dynamic outside_dyn_map

crypto map outside_map interface outside

crypto isakmp enable outside

crypto isakmp policy 10

authentication pre-share

encryption 3des

hash md5

group 2

lifetime 86400

telnet timeout 5

ssh timeout 5

console timeout 5

!

group-policy DefaultRAGroup internal

group-policy DefaultRAGroup attributes

dns-server value 78.186.13.51

vpn-tunnel-protocol IPSec l2tp-ipsec

default-domain value nonono.com

username test password xxx

tunnel-group DefaultRAGroup general-attributes

address-pool clientVPNpool

default-group-policy DefaultRAGroup

tunnel-group DefaultRAGroup ipsec-attributes

pre-shared-key *

tunnel-group DefaultRAGroup ppp-attributes

no authentication chap

authentication ms-chap-v2

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.

I stand corrected - but the last time I checked, you cant terminate PPTP of ver 6.4 and above...you can only configure IPSEC and L2TP tunnels to terminate.


I think now with ver 8.x you can configure PPTP pass-thru to terminate the PPTP tunnel on a backend server in your LAN!


HTH.

Actions

This Discussion