Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
686
Views
0
Helpful
2
Replies

VPN tunnel termination

hborn
Level 1
Level 1

‎07-07-2002 11:05 PM - edited ‎02-21-2020 11:54 AM

I work with a PIX515. Terminating a VPN tunnel on the outside interface works fine. But my goal is to terminate the tunnel on a perimeter interface. I have tried several things but I can't get it to work. Checking the syslog shows that the udp traffic on port 1701 reaches the interface on the perimeter network. But for some reason the firewall doesn't answer.

Has anyone estabished successfully an vpn tunnel to a perimeter interface? Can anyone help me? Sample Config?

Thank you.

Hans

Labels:
0 Helpful
2 Replies 2

paqiu
Level 1
Level 1

‎07-08-2002 04:45 AM

PPTP should be working fine in the outside interface as well as the DMZ interface. Instead of "vpdn enable outside" use "vpdn enable dmz".

By the way, PPTP use TCP 1723 and protocol GRE.

If you are seeing UDP 1701, that means client PC configed to use L2TP not PPTP. Because L2TP use UDP 1701 and protocol GRE.

Please double check your client PC configuration for PPTP.

Best Regards,

0 Helpful

hborn
Level 1
Level 1
In response to paqiu

‎07-08-2002 05:59 AM

But I don't want to user PPTP, I want to use an L2TP/IPsec VPN Client (Like XP/Win2K) ...

How come the perimeter interface doesn't respond, is this Cisco implementation that L2TP/IPsec connections can only be terminated on the outside interface?

regards

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents