OS X Server 10.5 VPN and PIX 501

Unanswered Question
Jun 23rd, 2008

Hello all,

I'm trying to setup L2TP and PPTP VPN on a Mac OS X 10.5 server. So far I am able to authenticate, connect, and obtain an IP address via L2TP (I'm currently on a mac laptop), but I am unable to get to any of the machines/firewall once in.

I can ping, connect, and remote admin the OSX server (10.1.1.6), but I can't ping or connect to the site's PIX firewall (10.1.1.1).

In the server VPN setup, I have 10.1.1.0 and 10.2.2.0 listed in the "Network Routing Definitions" (10.2.2.x is the IP range given out by the server to VPN clients).

On the PIX, I have:

access-list if_outside permit udp any host 26.19.15.13 eq isakmp

access-list if_outside permit udp any host 26.19.15.13 eq 4500

access-list if_outside permit udp any host 26.19.15.13 eq 1701

access-list if_outside permit tcp any host 26.19.15.13 eq pptp

(26.19.15.13 is statically assigned to 10.1.1.6, the server)

My main question is this:

What configuration do I need on the PIX to allow VPN traffic (10.2.2.0) to access machines on the LAN (10.1.1.0)?

Thanks!

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion