Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX515E want to use ISA 2004 VPN

Hello,

We are currently using the L2TP/IPSEC PIX VPN and want to disable this and switch over to the Microsoft ISA 2004 VPN (L2TP/IPSEC).

I believe that I have disabled the PIX VPN from the outside interface and also configured the PIX to forward the appropriate traffic into the ISA Server. However I still cannot connect.

Does anyone have an article on how to properly set this up?

Thanks,

Mike D.

4 REPLIES
Silver

Re: PIX515E want to use ISA 2004 VPN

I think you can connect like the below method.

Cisco VPN Client

|

PIX 515 (NAT)

| DMZ

Windows 2000 ISA Server (Radius) (NAT)

|

Internal Network.

Gold

Re: PIX515E want to use ISA 2004 VPN

firstly we need to identify where the issue is; e.g. the pix is not permitting the traffic or the isa doesn't authenticate the user etc.

try capture command on the pix to verify the connection. with capture command, you need to create a new acl

access-l 111 permit ip any

capture xxx access-l 111 interface outside

you may apply another capture on the inside. also verify the isa log whether the request has ever reached the isa

Gold

Re: PIX515E want to use ISA 2004 VPN

just wondering how you go

New Member

Re: PIX515E want to use ISA 2004 VPN

The request reaches ISA but there is an error message from the ISA VPN Server when using L2TP/IPSEC and the user cannot be authenticated.

115
Views
0
Helpful
4
Replies