Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Allow Cisco VPN Client Out

We need to allow a computer on the inside of our network to connect to an outside network using Cisco VPN Client.  I have the external IP address of the outside network we are connecting to.  We have an ASA5520.  Would I setup a rule to allow TCP PPTP 1723 and IP GRE 47 to the external IP address I was given?  Would there be any other ports that would need to be allowed?

Thanks.

1 ACCEPTED SOLUTION

Accepted Solutions
Super Bronze

Re: Allow Cisco VPN Client Out

If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:

UDP/500

ESP

UDP/4500

plus you would need to allow "inspect ipsec-pass-thru"

Cisco VPN Client uses IPSec for VPN.

Hope that helps.

2 REPLIES
Cisco Employee

Re: Allow Cisco VPN Client Out

You need to configure inspect pptp. That should take care of it.

Follow this link: http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml#new

-KS

Super Bronze

Re: Allow Cisco VPN Client Out

If you would like to allow outbound Cisco VPN Client, then you would need to allow the following:

UDP/500

ESP

UDP/4500

plus you would need to allow "inspect ipsec-pass-thru"

Cisco VPN Client uses IPSec for VPN.

Hope that helps.

320
Views
5
Helpful
2
Replies