OS X Server 10.5 VPN and PIX 501

Unanswered Question
Jun 23rd, 2008
User Badges:

Hello all,


I'm trying to setup L2TP and PPTP VPN on a Mac OS X 10.5 server. So far I am able to authenticate, connect, and obtain an IP address via L2TP (I'm currently on a mac laptop), but I am unable to get to any of the machines/firewall once in.


I can ping, connect, and remote admin the OSX server (10.1.1.6), but I can't ping or connect to the site's PIX firewall (10.1.1.1).


In the server VPN setup, I have 10.1.1.0 and 10.2.2.0 listed in the "Network Routing Definitions" (10.2.2.x is the IP range given out by the server to VPN clients).


On the PIX, I have:


access-list if_outside permit udp any host 26.19.15.13 eq isakmp

access-list if_outside permit udp any host 26.19.15.13 eq 4500

access-list if_outside permit udp any host 26.19.15.13 eq 1701

access-list if_outside permit tcp any host 26.19.15.13 eq pptp


(26.19.15.13 is statically assigned to 10.1.1.6, the server)



My main question is this:


What configuration do I need on the PIX to allow VPN traffic (10.2.2.0) to access machines on the LAN (10.1.1.0)?


Thanks!



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion