Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Remote site PPTP --> NAT --> Internet --> PIX

I have this remote site behind a Netgear NAT router connecting to a PIX 501 here through PPTP. The PPTP tunnel is established correctly but the users from that site receive no response when they ping my internal IP addresses.

The remote site subnet is 192.168.0.0/24,

The PPTP VPN local pool is 10.1.1.0/24,

The internal network behind the PIX is 192.168.0.0/24 also...

Is it a problem having two identically addressed remote networks?

What is wrong with my setup?

P.S. I don't have any problems connecting from a public IP address.

  • Other Security Subjects
1 REPLY
New Member

Re: Remote site PPTP --> NAT --> Internet --> PIX

HI.

Yes, using same private addresses in both sides is a problem.

Possible solutions:

* Change the ip addressing in one of the networks.

* Do NOT use "nat 0" for the PPTP traffic at the pix side, instead use STATIC to map a registered ip address to your local server.

VPN clients will need to access the server by its global (outside) ip address instead of the internal ip as it is now.

This however will affect all PPTP clients...

Bye

Yizhar Hurwitz

http://come.to/yizhar

77
Views
0
Helpful
1
Replies