Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

OS X Server 10.5 VPN and PIX 501

Hello all,

I'm trying to setup L2TP and PPTP VPN on a Mac OS X 10.5 server. So far I am able to authenticate, connect, and obtain an IP address via L2TP (I'm currently on a mac laptop), but I am unable to get to any of the machines/firewall once in.

I can ping, connect, and remote admin the OSX server (10.1.1.6), but I can't ping or connect to the site's PIX firewall (10.1.1.1).

In the server VPN setup, I have 10.1.1.0 and 10.2.2.0 listed in the "Network Routing Definitions" (10.2.2.x is the IP range given out by the server to VPN clients).

On the PIX, I have:

access-list if_outside permit udp any host 26.19.15.13 eq isakmp

access-list if_outside permit udp any host 26.19.15.13 eq 4500

access-list if_outside permit udp any host 26.19.15.13 eq 1701

access-list if_outside permit tcp any host 26.19.15.13 eq pptp

(26.19.15.13 is statically assigned to 10.1.1.6, the server)

My main question is this:

What configuration do I need on the PIX to allow VPN traffic (10.2.2.0) to access machines on the LAN (10.1.1.0)?

Thanks!

1 REPLY
Silver

Re: OS X Server 10.5 VPN and PIX 501

Use this Cisco PIX 500 Series Security Appliances Configuration guide . See L2TP over IPSec and Remote Access VPN section.

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

313
Views
0
Helpful
1
Replies