DISQUS

Hello! Tech-Recipes is using DISQUS, a powerful comment system, to manage its comments. Learn more.

Community Page

www.tech-recipes.com/ Jump to website »

Subscribe
- New Comments
Community
Top Commenters
- davak
  76 comments · 1 points
- shamanstears
  26 comments · 1 points
- Quinn McHenry
  23 comments · 2 points
- seamonkey420
  18 comments · 1 points
- flexinfo
  11 comments · 1 points
Popular Threads
- Firefox 3.5: How to Disable Location-Aware Browsing
  2 days ago · 1 comment
- Using iPhone 3G S Voice Control Commands
  1 week ago · 7 comments
- iPhone 3.0: Show Battery Percentage
  1 week ago · 7 comments
- Windows 7: How to Reset the Recycle Bin
  1 week ago · 1 comment
- Windows 7: Make Aero Perform Faster
  2 weeks ago · 2 comments
Recent Comments
- i wish south africans would start getting twiter after all we are hosting the 2010 world cup so the world must start acepting it
  23 minutes ago by 123456
  
  in Facebook: Email Photos from your Cellphone to your Account
- ñ digam!! remover ie8 no adicionar e remover programas ??? eu nunca teria pensado nisso!! bando d otários!!
  59 minutes ago by xxxxx
  
  in How to uninstall IE8 | Browsers | Tech-Recipes
- it wont work help me
  2 hours ago by scott
  
  in Vista: Getting Adobe Flash Player to Work | Microsoft Vista | Tech-Recipes
- it dosnt bring up the flash player wizard can u help please
  2 hours ago by scott
  
  in Vista: Getting Adobe Flash Player to Work | Microsoft Vista | Tech-Recipes
- Google is the best search engine...what else I can say? But I dont use google chrome, I prefer other browser
  4 hours ago by Henry
  
  in Google Chrome: Change the Default Search Engine | Google | Tech-Recipes

Tech-Recipes

Cookbook of Tech Tutorials

Jump to original thread »

PPTP (Point-to-Point Tunneling Protocol) through PIX Firewall | Cisco firewall | Tech-Recipes

Started by qdideas · 9 months ago

No excerpt available. Jump to website »

6 comments

Fluffy
5 years ago

ok I'm a newbie when it comes to setting up this pix. When I add that static statement and the other access-list commands I can get into the network via vpn just fine, but all the computers on the inside network lose internet access. I took out the access-list and still had the same problem so I'm pretty sure it's caused by that static entry. Can anyone tell me what I'm doing wrong?

reply

Anonymous
4 years ago

I've got a same problem... If I delete the static rule, all other computers have an Internet access otherwise not :? :cry:

reply

Anonymous
4 years ago

Try adding "fixup protocol pptp 1723" instead of all of the changes above.

reply

ko
4 years ago

you need to check your recipe! you should never open port 137,138,139 to any machine from the internet.

PPTP uses TCP 1723 and GRE (protocol 47)

ports 137-139 are opening HUGE HOLES in your network security. Especially if it is to a Microsoft server, esentialy you have told people to open their windows shares to the World. NEVER OPEN these ports.

I don't coment on much but this is bad networking practices at their worst.

reply

Anonymous
4 years ago

<ul id="quote"><h6>Anonymous wrote:</h6>Try adding "fixup protocol pptp 1723" instead of all of the changes above.</ul>

This is right on, works like a champ. This only works in PIX version 6.3.3 and up.

The fixup now takes care of translating the GRE tunnel to a natted internal ip.

reply

Anonymous
2 years ago

There is a nice solution for Connecting a Cisco PIX to Windows Vista.
Configure L2TP without certificates to seamlessly migrate from PPTP to L2TP.
http://support.dmu.edu/VistaandCiscoPIXpptp/ind...

reply

Add New Comment

Returning? Login