Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PIX 501 with PPPOE and IPSEC

Hello,

I am using a pix 501 firewall with ios 6.2(2), I currently have it configured to use PPPOE over a DSL connection. Is there a way i can configure IPSEC or L2TP over this connection even if the ip address changes with PPPOE?

Thanks in advance,

bb

2 REPLIES

Re: PIX 501 with PPPOE and IPSEC

Try:

isakmp identity hostname

When two peers use IKE to establish IPSec security associations, each peer sends its ISAKMP identity to the remote peer. It will send either its IP address or host name depending on how each has its ISAKMP identity set. PIX by default uses IP. In your case as the IP may change, use hostname instead. The rest of the PIX ipsec can be set up as normal. Then set the other end to accept dynamic connections (eg for PIX: isakmp key ******** address 0.0.0.0 netmask 0.0.0.0).

Hope that helps.

Steve

New Member

Re: PIX 501 with PPPOE and IPSEC

Thanks, I try it later today.

bb

92
Views
0
Helpful
2
Replies
CreatePlease login to create content