11-02-2006 03:09 PM
Hi;
I need to configure My pix so one of my clients can extablish a VPN tunnel the outside?
outside --- PIX -- Client (VPN Client)
what access lis needed to be configued on the PIX?
help please.
11-08-2006 12:49 PM
Try this:
In order to be able to establish a VPN tunnel you need to make sure that UDP and ESP is open.
You need to open...
UDP on port 500
UDP on port 4500
ESP (no ports).
Using access-lists:
access-list 101 permit udp any any port 500
access-list 101 permit udp any any port 4500
access-list 101 permit esp any any
also make sure that you have command: fixup protocol esp-ike
11-08-2006 05:43 PM
fixup protocol esp-ike is not an option in version 7 code. Is ipsec-pass-through the same?
11-08-2006 11:26 PM
Thanks.
This is what i need.
Thank you.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: