I am in need of the ability to connect a MAC OS 9.2 to be able to VPN to a PIX firewall. I have tried Netlock but it only works with a VPN concentrator. My question for it is can I make the PIX prompt for a username/password like the concentrator does? maybe that would work.
Next I tried TunnelBuilder to connect and it does but breaks during LCP negotiations. I have placed the debug screen below:
Tnl 7 PPTP: Tunnel created; peer initiated
Tnl 7 PPTP: SCCRQ-ok -> state change wt-sccrq to estabd
Tnl/Cl 7/7 PPTP: l2x store session: tunnel id 7, session id 7, hash_ix=7
PPP virtual access open, ifc = 0
Tnl/Cl 7/7 PPTP: vacc-ok -> state change wt-vacc to estabd
Rcvd Link Control Protocol pkt, Action code is: Config Request, len is: 20
For Mac OS 9, you could use NAI's PGP Desktop suite. It contains PGPNet which works with the PIX without XAUTH. Check out www.pgp.com for details.
You want to check out the Corporate Desktop if I remember correctly. You'll also need the 3DES license for the PIX as PGP doesn't do DES IPSEC tunnels, only 3DES and you need to set the PIX to do IPSEC, not PPTP.
On a flip side...
You can get the PIX to do XAUTH, check the PIX TAC how-to's, that might allow you to use the netlock client, but I doubt it.
My personal recommendation would be to upgrade to Mac OS X 10.2 and use the 3.6 VPN Client from Cisco. That's a supported config of both the PIX and the client. Also Mac OS X does have a built in PPTP client.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :