Networking Forums  

Go Back   Networking Forums > Networking Newsgroups > Windows Server Networking
Reload this Page Remote Access Server and PIX

Remote Access Server and PIX

Reply
 
Thread Tools Display Modes
  #1  
Old 02-20-2006, 02:45 PM
Default Remote Access Server and PIX


Hi all,

I'm trying to setup a VPN (first time setting one up) and I am going
through a Cisxo PIX to Windows2003 Server..

Can someone tell me what I need to do on the PIX side to make this
work? Or can you point me to a nice step-by-step PIX/RAS/VPN Setup?

)

Thanks!

Matt


REMOVE.msg@teeceeco.com
Reply With Quote
  #2  
Old 02-20-2006, 03:21 PM
Robert L [MS-MVP]
Guest
  
Posts: n/a
Default Re: Remote Access Server and PIX
Here are the sample command line,

access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0
ip local pool bigpool 192.168.1.1-192.168.1.254
nat (inside) 0 access-list 101
vpdn group 1 accept dialin pptp
vpdn group 1 ppp authentication pap
vpdn group 1 ppp authentication chap
vpdn group 1 ppp authentication mschap
vpdn group 1 ppp encryption mppe 128
vpdn group 1 client configuration address local bigpool
vpdn group 1 client configuration dns yourdns
vpdn group 1 client configuration wins yourwins
vpdn group 1 pptp echo 60
vpdn group 1 client authentication local
vpdn username username password *********
vpdn enable outside

VPN Setup
What statements are required to allow a VPN inbound past my Cisco PIX? ....
A VPN client can be an individual computer running MS Windows NT version 4.0, ...
www.chicagotech.net/vpnsetup.htm

VPN Issues
To setup VPN for MS VPN clients on Cisco PIX, you need to add the following lines.
access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0 ....
www.chicagotech.net/vpn.htm


Bob Lin, MS-MVP, MCSE & CNE
Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
<(E-Mail Removed)> wrote in message news:(E-Mail Removed)...
Hi all,

I'm trying to setup a VPN (first time setting one up) and I am going
through a Cisxo PIX to Windows2003 Server..

Can someone tell me what I need to do on the PIX side to make this
work? Or can you point me to a nice step-by-step PIX/RAS/VPN Setup?

)

Thanks!

Matt
Reply With Quote
  #3  
Old 02-20-2006, 03:35 PM
REMOVE.msg@teeceeco.com
Guest
  
Posts: n/a
Default Re: Remote Access Server and PIX
Excellent, thank you very much!

On Mon, 20 Feb 2006 09:21:50 -0600, "Robert L [MS-MVP]"
<(E-Mail Removed)> wrote:

>Here are the sample command line,
>
>access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0
>ip local pool bigpool 192.168.1.1-192.168.1.254
>nat (inside) 0 access-list 101
>vpdn group 1 accept dialin pptp
>vpdn group 1 ppp authentication pap
>vpdn group 1 ppp authentication chap
>vpdn group 1 ppp authentication mschap
>vpdn group 1 ppp encryption mppe 128
>vpdn group 1 client configuration address local bigpool
>vpdn group 1 client configuration dns yourdns
>vpdn group 1 client configuration wins yourwins
>vpdn group 1 pptp echo 60
>vpdn group 1 client authentication local
>vpdn username username password *********
>vpdn enable outside
>
>VPN Setup
>What statements are required to allow a VPN inbound past my Cisco PIX? ...
>A VPN client can be an individual computer running MS Windows NT version 4.0, ...
>www.chicagotech.net/vpnsetup.htm
>
>VPN Issues
>To setup VPN for MS VPN clients on Cisco PIX, you need to add the following lines.
>access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0 ...
>www.chicagotech.net/vpn.htm
>
>
>Bob Lin, MS-MVP, MCSE & CNE
>Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
>How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
> <(E-Mail Removed)> wrote in message news:(E-Mail Removed)...
> Hi all,
>
> I'm trying to setup a VPN (first time setting one up) and I am going
> through a Cisxo PIX to Windows2003 Server..
>
> Can someone tell me what I need to do on the PIX side to make this
> work? Or can you point me to a nice step-by-step PIX/RAS/VPN Setup?
>
> )
>
> Thanks!
>
> Matt
Reply With Quote
  #4  
Old 02-20-2006, 07:35 PM
REMOVE.msg@teeceeco.com
Guest
  
Posts: n/a
Default Re: Remote Access Server and PIX
Oh I just don't get it... I'm pulling my hair out over this.. I have
resorted to just opening up every IP, UDP and TCP port to the server
running remote access and still nothing!

I'm going slightly mad, and quite bald!


On Mon, 20 Feb 2006 09:21:50 -0600, "Robert L [MS-MVP]"
<(E-Mail Removed)> wrote:

>Here are the sample command line,
>
>access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0
>ip local pool bigpool 192.168.1.1-192.168.1.254
>nat (inside) 0 access-list 101
>vpdn group 1 accept dialin pptp
>vpdn group 1 ppp authentication pap
>vpdn group 1 ppp authentication chap
>vpdn group 1 ppp authentication mschap
>vpdn group 1 ppp encryption mppe 128
>vpdn group 1 client configuration address local bigpool
>vpdn group 1 client configuration dns yourdns
>vpdn group 1 client configuration wins yourwins
>vpdn group 1 pptp echo 60
>vpdn group 1 client authentication local
>vpdn username username password *********
>vpdn enable outside
>
>VPN Setup
>What statements are required to allow a VPN inbound past my Cisco PIX? ...
>A VPN client can be an individual computer running MS Windows NT version 4.0, ...
>www.chicagotech.net/vpnsetup.htm
>
>VPN Issues
>To setup VPN for MS VPN clients on Cisco PIX, you need to add the following lines.
>access-list 101 permit ip 10.1.0.0 255.255.0.0 192.168.1.0 255.255.255.0 ...
>www.chicagotech.net/vpn.htm
>
>
>Bob Lin, MS-MVP, MCSE & CNE
>Networking, Internet, Routing, VPN Troubleshooting on http://www.ChicagoTech.net
>How to Setup Windows, Network, VPN & Remote Access on http://www.HowToNetworking.com
> <(E-Mail Removed)> wrote in message news:(E-Mail Removed)...
> Hi all,
>
> I'm trying to setup a VPN (first time setting one up) and I am going
> through a Cisxo PIX to Windows2003 Server..
>
> Can someone tell me what I need to do on the PIX side to make this
> work? Or can you point me to a nice step-by-step PIX/RAS/VPN Setup?
>
> )
>
> Thanks!
>
> Matt
Reply With Quote
  #5  
Old 03-21-2006, 10:50 AM
Dan Williams
Guest
  
Posts: n/a
Default RE: Remote Access Server and PIX
Try using the web based PDM manager for your PIX.
This has a nice easy VPN wizard on the tools menu.

Make sure the client pool addresses on the PIX is a different subnet to your
internal network to allow for routing and split tunneling to work effectively
on the VPN clients.

Make sure your server either has the PIX as the default gateway or you add a
route for the VPN client subnet via the PIX.

RAS does not come in to it on the server at all apart from a possible route
required.

Use the Cisco VPN Client version 4 on the PCs to connect in - this would of
been supplied on CD with the PIX.
--
Dan Williams [MCSE]
Imex Technical Services


"(E-Mail Removed)" wrote:

> Hi all,
>
> I'm trying to setup a VPN (first time setting one up) and I am going
> through a Cisxo PIX to Windows2003 Server..
>
> Can someone tell me what I need to do on the PIX side to make this
> work? Or can you point me to a nice step-by-step PIX/RAS/VPN Setup?
>
> )
>
> Thanks!
>
> Matt
>
Reply With Quote
Reply

Tags
access, pix, remote, server

« Previous Thread | Next Thread »
Thread Tools
Display Modes
Linear Mode Linear Mode

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


All times are GMT. The time now is 07:15 PM.

Contact Us - Archive - Top

Powered by vBulletin® Version 3.7.3
Copyright ©2000 - 2008, Jelsoft Enterprises Ltd.