Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
253
Views
4
Helpful
3
Replies

VPN Client (inside to outside)

w_basheer
Level 1
Level 1

‎11-02-2006 03:09 PM

Hi;

I need to configure My pix so one of my clients can extablish a VPN tunnel the outside?

outside --- PIX -- Client (VPN Client)

what access lis needed to be configued on the PIX?

help please.

Labels:
0 Helpful
3 Replies 3

b.hsu
Level 5
Level 5

‎11-08-2006 12:49 PM

Try this:

In order to be able to establish a VPN tunnel you need to make sure that UDP and ESP is open.

You need to open...

UDP on port 500

UDP on port 4500

ESP (no ports).

Using access-lists:

access-list 101 permit udp any any port 500

access-list 101 permit udp any any port 4500

access-list 101 permit esp any any

also make sure that you have command: fixup protocol esp-ike

jms112080
Level 1
Level 1
In response to b.hsu

‎11-08-2006 05:43 PM

fixup protocol esp-ike is not an option in version 7 code. Is ipsec-pass-through the same?

0 Helpful

w_basheer
Level 1
Level 1
In response to b.hsu

‎11-08-2006 11:26 PM

Thanks.

This is what i need.

Thank you.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents