Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
504
Views
0
Helpful
1
Replies

OS X Server 10.5 VPN and PIX 501

Armegeden
Level 1
Level 1

‎06-23-2008 07:08 AM

Hello all,

I'm trying to setup L2TP and PPTP VPN on a Mac OS X 10.5 server. So far I am able to authenticate, connect, and obtain an IP address via L2TP (I'm currently on a mac laptop), but I am unable to get to any of the machines/firewall once in.

I can ping, connect, and remote admin the OSX server (10.1.1.6), but I can't ping or connect to the site's PIX firewall (10.1.1.1).

In the server VPN setup, I have 10.1.1.0 and 10.2.2.0 listed in the "Network Routing Definitions" (10.2.2.x is the IP range given out by the server to VPN clients).

On the PIX, I have:

access-list if_outside permit udp any host 26.19.15.13 eq isakmp

access-list if_outside permit udp any host 26.19.15.13 eq 4500

access-list if_outside permit udp any host 26.19.15.13 eq 1701

access-list if_outside permit tcp any host 26.19.15.13 eq pptp

(26.19.15.13 is statically assigned to 10.1.1.6, the server)

My main question is this:

What configuration do I need on the PIX to allow VPN traffic (10.2.2.0) to access machines on the LAN (10.1.1.0)?

Thanks!

Labels:
0 Helpful
1 Reply 1

aghaznavi
Level 5
Level 5

‎06-27-2008 02:50 AM

Use this Cisco PIX 500 Series Security Appliances Configuration guide . See L2TP over IPSec and Remote Access VPN section.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents