08-24-2010 04:42 AM - edited 03-11-2019 11:29 AM
We need to allow a computer on the inside of our network to connect to an outside network using Cisco VPN Client. I have the external IP address of the outside network we are connecting to. We have an ASA5520. Would I setup a rule to allow TCP PPTP 1723 and IP GRE 47 to the external IP address I was given? Would there be any other ports that would need to be allowed?
Thanks.
Solved! Go to Solution.
08-24-2010 05:29 AM
If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:
UDP/500
ESP
UDP/4500
plus you would need to allow "inspect ipsec-pass-thru"
Cisco VPN Client uses IPSec for VPN.
Hope that helps.
08-24-2010 05:17 AM
You need to configure inspect pptp. That should take care of it.
Follow this link: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml#new
-KS
08-24-2010 05:29 AM
If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:
UDP/500
ESP
UDP/4500
plus you would need to allow "inspect ipsec-pass-thru"
Cisco VPN Client uses IPSec for VPN.
Hope that helps.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: