Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Remote site PPTP --> NAT --> Internet --> PIX

I have this remote site behind a Netgear NAT router connecting to a PIX 501 here through PPTP. The PPTP tunnel is established correctly but the users from that site receive no response when they ping my internal IP addresses.

The remote site subnet is,

The PPTP VPN local pool is,

The internal network behind the PIX is also...

Is it a problem having two identically addressed remote networks?

What is wrong with my setup?

P.S. I don't have any problems connecting from a public IP address.

  • Other Security Subjects
New Member

Re: Remote site PPTP --> NAT --> Internet --> PIX


Yes, using same private addresses in both sides is a problem.

Possible solutions:

* Change the ip addressing in one of the networks.

* Do NOT use "nat 0" for the PPTP traffic at the pix side, instead use STATIC to map a registered ip address to your local server.

VPN clients will need to access the server by its global (outside) ip address instead of the internal ip as it is now.

This however will affect all PPTP clients...


Yizhar Hurwitz