Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

VPN - GRE Protocol with a Cisco 1601

Wanted some help in how to allow GRE (Protocol 47) for use with a VPN.

We have a Cisco 1601 IOS 12.0 (3)T with the firewall feature set. We also employ NAT and have the server statically mapped. We have opened port 1723 as required for VPN but also see that we need to allow GRE.

Internet <---- Cisco 1601 <--- Server

Our set-up is relatively simple as shown above. Just wanted help to know if the router/IOS we have will support GRE? And if so, how we go about it.

Thanks!!

1 REPLY
Cisco Employee

Re: VPN - GRE Protocol with a Cisco 1601

you need to add on your access-list permit gre any any (or you can be more specific about the host and destination).

This is a pix sample, but the idea is similar :

http://www.cisco.com/warp/public/110/pix_pptp.html

Make sure that the static mapping is a one address fully for the server only. If the IP is shared with other devices (PAT) you need to upgrade your code to at list 12.1.3T.

Regards,

186
Views
0
Helpful
1
Replies
CreatePlease login to create content