Does anyone know what I would need to do to allow a client on the inside of the PIX firewall to connect to another companies VPN server? When attempting to connect to a VPN server on the outside of the PIX it returns error 721, the computer failed to respond. The access list has the default explict lists, which should allow the connection to be established because it was initiated on the inside correct? Any help would be appreciated!.. Thanks
I guess you are trying to establish a PPTP Connection to the remote VPN Server. In order to PPTP through a PIX, you must have a one-to-one mapping from the external IP to an internal IP for type 47 GRE packets and port 1723.
Configure a static public ip address for this client and then try connecting to the remote side. And also, if possible test the client with a Dial Up, just to make sure that the PPTP is configured properly on the VPN Server and the Client.
Yes it is a PPTP connection to a remote VPN server that I am trying to establish. I've used Dial Up and can establish a connection fine, and I've set a laptop up on the public network and can connect fine to the VPN, which made me realize it was a problem w/ the PIX setup.
So if I want to establish a VPN connection in the future I will need to establish a one-to-one mapping for the private adderss to a public address? Is it possible to configure the PIX so any of the clients on the inside could establish a connection? The way the PIX is setup right now is that it is using a pool of IP address on the outside network, and using NAT for the private addresses. I'm new to the PIX, I was just surprised that the pix didn't establish a connection automatically.
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :