PPTP Support/Configuration on PIX 515 with Pixos 8.0.3

Unanswered Question
May 20th, 2008
User Badges:

Hi All;

I have been trying to configure a PIX 515 with Pixos 8.0.3 to accept PPTP VPN connection and i have been failing miserably! Maybe this is only possible on version 6.x and not on 8.x.

I have been able to configure L2TP with IPSec and that is working well, but what i need is PPTP without IPSec, so a windows application can connect to it, my current configurations is as follows:

Thank you


aaa-server vpn protocol radius

aaa-server vpn host

key windows

http server enable

http PublicHomeNetwork outside

http dmz

http inside

http inside

http inside

crypto ipsec transform-set TRANS_ESP_3DES_MD5 esp-3des esp-md5-hmac

crypto ipsec transform-set TRANS_ESP_3DES_MD5 mode transport

crypto dynamic-map outside_dyn_map 20 set transform-set TRANS_ESP_3DES_MD5

crypto map outside_map 20 ipsec-isakmp dynamic outside_dyn_map

crypto map outside_map interface outside

crypto isakmp enable outside

crypto isakmp policy 10

authentication pre-share

encryption 3des

hash md5

group 2

lifetime 86400

telnet timeout 5

ssh timeout 5

console timeout 5


group-policy DefaultRAGroup internal

group-policy DefaultRAGroup attributes

dns-server value

vpn-tunnel-protocol IPSec l2tp-ipsec

default-domain value nonono.com

username test password xxx

tunnel-group DefaultRAGroup general-attributes

address-pool clientVPNpool

default-group-policy DefaultRAGroup

tunnel-group DefaultRAGroup ipsec-attributes

pre-shared-key *

tunnel-group DefaultRAGroup ppp-attributes

no authentication chap

authentication ms-chap-v2

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)

I stand corrected - but the last time I checked, you cant terminate PPTP of ver 6.4 and above...you can only configure IPSEC and L2TP tunnels to terminate.

I think now with ver 8.x you can configure PPTP pass-thru to terminate the PPTP tunnel on a backend server in your LAN!



This Discussion