Access To VPN external over PIX

Unanswered Question
May 18th, 2009
User Badges:

In my internal network a PC need connect by vpn with one peer in external network for access to aplication in other company.


The tecnical support say me that i need configure access to ip external.


IPSec ESP (IP protocol number 50)

ISAKMP / Oakley (IP protocol number 17)

ISAKMP / Oakley (UDP port 500)




I configure that, but no function.


access-list dmz4 extended permit udp host 1.1.1.1 host 192.165.1.1 eq isakmp

access-list dmz4 extended permit esp host 1.1.1.1 host 192.165.1.1


After i configure:


access-list dmz4 extended permit ip host 1.1.1.1 any


and don`t function neither


The technical support say:


That i need configure a nat one to one and don`t use pat.


What do you think about it?







  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
acomiskey Mon, 05/18/2009 - 11:05
User Badges:
  • Green, 3000 points or more

Which address here is your local pc and which is the remote peer?


access-list dmz4 extended permit udp host 1.1.1.1 host 192.165.1.1 eq isakmp

access-list dmz4 extended permit esp host 1.1.1.1 host 192.165.1.1

Actions

This Discussion