Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

PPTP VPN is not routing any packets

I'm very new to Cisco, and this is the first box that I'm configuring. It's a PIX 501 firewall which I'm trying to set up with VPN. I got it up to the point where it connects, but I cannot do anything once connected, I can't even ping other machines behind it. Everything on my local network has addresses. Here is my config, what's wrong?

PIX Version 6.3(5)

interface ethernet0 auto

interface ethernet1 100full

nameif ethernet0 outside security0

nameif ethernet1 inside security100

enable password xxxx

passwd xxxx

hostname pix


fixup protocol dns maximum-length 512

fixup protocol ftp 21

fixup protocol h323 h225 1720

fixup protocol h323 ras 1718-1719

fixup protocol http 80

fixup protocol rsh 514

fixup protocol rtsp 554

fixup protocol sip 5060

fixup protocol sip udp 5060

fixup protocol skinny 2000

fixup protocol smtp 25

fixup protocol sqlnet 1521

fixup protocol tftp 69


pager lines 24

mtu outside 1500

mtu inside 1500

ip address outside dhcp setroute

ip address inside 143.x.x.x.x.255.0

ip audit info action alarm

ip audit attack action alarm

ip local pool vpn 143.x.x.x.x.96.240

pdm logging informational 100

pdm history enable

arp timeout 14400

global (outside) 1 interface

nat (inside) 1 0 0

timeout xlate 0:05:00

timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00

timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00

timeout sip-disconnect 0:02:00 sip-invite 0:03:00

timeout uauth 0:05:00 absolute

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ max-failed-attempts 3

aaa-server TACACS+ deadtime 10

aaa-server RADIUS protocol radius

aaa-server RADIUS max-failed-attempts 3

aaa-server RADIUS deadtime 10

aaa-server LOCAL protocol local

http server enable

http 143.x.x.x.x.255.0 inside

no snmp-server location

no snmp-server contact

snmp-server community public

no snmp-server enable traps

floodguard enable

telnet timeout 5

ssh timeout 5

console timeout 0

vpdn group aim accept dialin pptp

vpdn group aim ppp authentication pap

vpdn group aim ppp authentication chap

vpdn group aim ppp authentication mschap

vpdn group aim ppp encryption mppe auto

vpdn group aim client configuration address local vpn

vpdn group aim client configuration dns

vpdn group aim client configuration wins

vpdn group aim pptp echo 60

vpdn group aim client authentication local

vpdn username admin password *********

vpdn enable outside

dhcpd auto_config outside

terminal width 80


: end


Re: PPTP VPN is not routing any packets


Can you change the ip pool being assigned to the remote hosts from a different block and check whether you are able to access the internal resources ?

also do ensure that you are enabling the accessin/permitting the new pool to access your internal resources..


New Member

Re: PPTP VPN is not routing any packets

This has clearly not been priority number 1 at my workplace, but anyways, I tried your first suggestion, but it didn't do anything. As for the second one, I did not do anything specifically like that. How do I do that?


New Member

Re: PPTP VPN is not routing any packets

How do I enable the accessin/permitting the new pool to access your internal resources?

Any other suggestions?