I'm trying to setup L2TP and PPTP VPN on a Mac OS X 10.5 server. So far I am able to authenticate, connect, and obtain an IP address via L2TP (I'm currently on a mac laptop), but I am unable to get to any of the machines/firewall once in.
I can ping, connect, and remote admin the OSX server (10.1.1.6), but I can't ping or connect to the site's PIX firewall (10.1.1.1).
In the server VPN setup, I have 10.1.1.0 and 10.2.2.0 listed in the "Network Routing Definitions" (10.2.2.x is the IP range given out by the server to VPN clients).
On the PIX, I have:
access-list if_outside permit udp any host 22.214.171.124 eq isakmp
access-list if_outside permit udp any host 126.96.36.199 eq 4500
access-list if_outside permit udp any host 188.8.131.52 eq 1701
access-list if_outside permit tcp any host 184.108.40.206 eq pptp
(220.127.116.11 is statically assigned to 10.1.1.6, the server)
My main question is this:
What configuration do I need on the PIX to allow VPN traffic (10.2.2.0) to access machines on the LAN (10.1.1.0)?