Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

L2tp passthrough pix 501 6.3(5)

I am trying to establish 2 sesions L2TP/ipsec VPN connections through Pix 501.

Everything works fine when one computer make connection to VPN Server, but when this sesion is established, and another computer tries to make connection, second sesion canot be established.

Configuration:

Pix 501 6.3(5) have 2 interfaces

outside:10.3.x.x

inside:192.168.x.x

VPN server is in outside network 10.3.x.x

VPN clients are in inside network 192.168.x.x

inside network is behind PAT to outside single ip address.

3 REPLIES
Bronze

Re: L2tp passthrough pix 501 6.3(5)

hi.

just go thru the following link...

http://www.cisco.com/warp/public/110/l2tp-w2kxp-pix72-pre.pdf

-Pls rate if useful--

New Member

Re: L2tp passthrough pix 501 6.3(5)

Thank you for replay. But you misunderstood my point.

As I wrote above, Pix Firewall isn't VPN Server for Windows XP VPN Clients.

VPN Server is Windows 2K Server. Problem is that Pix Firewall 501 let only one L2TP Session through.

Network Topology diagram:

http://img91.imageshack.us/img91/1259/pixfirewallvpnen6.jpg

New Member

Re: L2tp passthrough pix 501 6.3(5)

I am afraid this is not possible:

Multiple PPTP Connections Fail when using PAT

You can only have one PPTP connection through the PIX Security Appliance when you use PAT. This is because the necessary GRE connection is established over port 0 and the PIX Security Appliance only maps port 0 to one host.

See this link also

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080094a5a.shtml

441
Views
0
Helpful
3
Replies
CreatePlease login to create content