VPN over Cisco ADSL 800 router

Unanswered Question
Jul 3rd, 2008


I am trying to allow a vpn connection through on a cisco 800 ADSL router. I have ammended the acl to read permit ip host any eq 1723 and

permit ip any host eq 1723

However this has still not helped. I cannot access my site remotely with VPN.

I have attached the ADSL router config.

Any help will be much appreciated



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
michael.leblanc Fri, 07/04/2008 - 13:07

Those Access Control Entries are not found in any of the ACLs in your configuration.

The ACEs were probably not accepted because you have specified the protocol as IP, rather than TCP or UDP.

Port 1723 is PPTP. Although I don't work with PPTP, I see no indication in your configuration that you require PPTP anyway. It appears to me that you are trying to establish standard Cisco VPN Client IPSec connections (which has not been clearly stated).

ACL 110 is currently not applied to any interface.

The most notable deficiency is the absence of "reverse-route" from your dynamic crypto map, which is required to provision a return path to the VPN Client by injecting a route into the routing table.

crypto dynamic-map outsidemap_dyn 10

set transform-set 3DES-MD5


You may also wish to amend your split tunneling ACL from:

Extended IP access list acl-SplitTunnel1

10 permit ip any


Extended IP access list acl-SplitTunnel1

10 permit ip


This Discussion