Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

Cisco Employee

PPTP connection to PIX6.01

I've setup a PPTP connection to a PIX 6.01 from a W2KPRO through internet.

The user gets connected but it cannot access any inside host because all traffic is blocked by the PIX .

Do I have to setup an access-list also for the VPN traffic?

Where do I have to apply it on the inside or putside interface ?

  • Other Security Subjects
1 REPLY
New Member

Re: PPTP connection to PIX6.01

You use the access-list to allow traffic to your internal networks. For example:

access-list 101 permit ip 172.16.10.0 255.255.255.0 192.168.25.0 255.255.255.0

access-list 101 permit ip 172.26.10.0 255.255.255.0 192.168.25.0 255.255.255.0

access-list 101 permit ip 172.25.10.0 255.255.255.0 192.168.25.0 255.255.255.0

Then you need the following NAT statement (Which is probably already there if are making the pptp connection)

nat (inside) 0 access-list 101

101
Views
0
Helpful
1
Replies