08-24-2010 04:42 AM - edited 03-11-2019 11:29 AM
We need to allow a computer on the inside of our network to connect to an outside network using Cisco VPN Client. I have the external IP address of the outside network we are connecting to. We have an ASA5520. Would I setup a rule to allow TCP PPTP 1723 and IP GRE 47 to the external IP address I was given? Would there be any other ports that would need to be allowed?
Thanks.
Solved! Go to Solution.
08-24-2010 05:29 AM
If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:
UDP/500
ESP
UDP/4500
plus you would need to allow "inspect ipsec-pass-thru"
Cisco VPN Client uses IPSec for VPN.
Hope that helps.
08-24-2010 05:17 AM
You need to configure inspect pptp. That should take care of it.
Follow this link: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml#new
-KS
08-24-2010 05:29 AM
If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:
UDP/500
ESP
UDP/4500
plus you would need to allow "inspect ipsec-pass-thru"
Cisco VPN Client uses IPSec for VPN.
Hope that helps.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide