Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
New Member

PIX firewall blocks VPN Clients

Hello guys,

I have a PIX 501 firewall in my company's network. When customers from outside come inside the company and they trying to


connect to their sites via Cisco VPN client, the PIX 501 stops the VPN connection.

Any suggestions?

Thank you

Regards

Leon

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: PIX firewall blocks VPN Clients

It depends on which version of PIX you are running.

This is assuming that the PIX firewall is passing through IPSec tunnel:

Here is a sample configuration for PIX version 6.x:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008009486e.shtml

Here is sample configuration for PIX version 7.x and above:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008045a2d2.shtml

Hope that helps.

4 REPLIES
Cisco Employee

Re: PIX firewall blocks VPN Clients

Do you mean the VPN connection pass through the PIX firewall? or terminate on the PIX firewall?

If it passes through the PIX firewall:

1) What version of PIX firewall do you have?

2) Are you configuring static NAT for the VPN traffic?

3) Have you configure ACL to allow the VPN traffic?

4) What VPN protocol are you using? IPSec? PPTP? L2TP over IPSec?

New Member

Re: PIX firewall blocks VPN Clients

Hi Jennifer,

The PIX is not configured for VPN, this is for sure. To be honest, I need to make a password recovery on that PIX cause I just came into this company

and they have lost the password of the PIX. I'm not really familiar with PIX firewalls so could you pls tell me any commands (natting, acls) that allows VPN

traffic to pass through the firewall?

Thank you

Leon

Cisco Employee

Re: PIX firewall blocks VPN Clients

It depends on which version of PIX you are running.

This is assuming that the PIX firewall is passing through IPSec tunnel:

Here is a sample configuration for PIX version 6.x:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008009486e.shtml

Here is sample configuration for PIX version 7.x and above:

http://www.cisco.com/en/US/products/ps6120/products_configuration_example09186a008045a2d2.shtml

Hope that helps.

New Member

Re: PIX firewall blocks VPN Clients

These configuration will really help. The PIX Version is 6.3 (5)

Thanks a lot Jennifer.

417
Views
0
Helpful
4
Replies
CreatePlease to create content