Re: VPN

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

From: menard (menard_at_stanleyaviation.com)
Date: 07/22/04 

Date: Thu, 22 Jul 2004 08:47:14 -0600

this is what i have on my pix
12.155.152.171 being my external on the pix and 192.168.4.5 being the
external on my dmz inside pix
my internal network is 172.30.x.x

access-list acl_internet permit gre any host 12.155.152.171
access-list acl_internet permit tcp any host 12.155.152.171 eq pptp
access-list acl_internet permit tcp any host 12.155.152.171 eq 4500
access-list acl_internet permit udp any host 12.155.152.171 eq isakmp
access-list acl_internet permit udp any host 12.155.152.171 eq 1701
access-list acl_internet permit tcp any host 12.155.152.171 eq 1701
access-list acl_internet permit udp any host 12.155.152.171 eq 10000
access-list acl_internet permit esp any host 12.155.152.171
access-list acl_internet permit tcp any host 12.155.152.171 eq 1023
access-list acl_internet permit udp any host 12.155.152.171 eq 4500
access-list acl_internet permit udp any eq isakmp host 12.155.152.171
access-list acl_internet permit udp any eq 4500 host 12.155.152.171

static (inside,outside) 12.155.152.171 192.168.4.5 netmask 255.255.255.255
10000 1000

"Admin" <admin@admin.com> wrote in message
news:uDTmeFjbEHA.796@TK2MSFTNGP09.phx.gbl...
> ISA 2000 firewall
>
>
> "Thomas W Shinder [MVP]" <tshinder@hotmail.com> wrote in message
> news:uZtZUehbEHA.2476@TK2MSFTNGP09.phx.gbl...
>> Hi Admin,
>>
>> Is this a ISA 2000 firewall or ISA 2004 firewall?
>>
>> Thanks!
>> --
>> Tom
>> www.isaserver.org/shinder
>> Get the book!
>> Tom and Deb Shinder's Configuring ISA Server 2004
>> http://tinyurl.com/3xqb7
>> MVP -- ISA Firewalls
>>
>>
>> "Admin" <admin@admin.com> wrote in message
>> news:OgCLyExaEHA.996@TK2MSFTNGP12.phx.gbl...
>> : I have a Cisco PIX firewall with many Zones on my network and I enabled
>> the
>> : VPN on PIX and I install VPN Client on my Laptop
>> : and I plug the inside zone for PIX to Outside zone for ISA
>> : can any one tell me how to configure ISA for any incoming request from
>> : outside to inside
>> :
>> : note the IP pool from out is 192.168.200.x
>> : the iside IP is 192.168.0.x
>> :
>> :
>>
>>
>
>

Relevant Pages

  • Re: Need help with a PIX 520 and VPN traffic
    ... access-list acl_inside deny ip any host 152.163.0.0 ... access-list acl_inside permit tcp any any eq ftp-data ... access-list acl_inside permit icmp host 151.209.194.228 any echo ... access-list acl_inside permit udp any host 192.131.69.200 eq isakmp ...
    (comp.dcom.sys.cisco)
  • Re: VPN
    ... being my external on the pix and 192.168.4.5 being the ... access-list acl_internet permit tcp any host 12.155.152.171 eq pptp ... access-list acl_internet permit udp any host 12.155.152.171 eq isakmp ...
    (microsoft.public.isaserver)
  • Re: Trying to get into my router but ...
    ... ip host tardis 204.209.81.2 ... access-list 101 permit tcp any 204.209.81.0 0.0.0.255 ... access-list 102 deny ip 218.22.0.0 0.1.255.255 any ... access-list 102 permit udp any eq 6277 any ...
    (comp.dcom.sys.cisco)
  • Re: DNS not doing recursive lookups
    ... > permit udp any host xxx.xxx.xxx.xxx eq domain ... > permit tcp any host xxx.xxx.xxx.xxx eq domain ... the NT DNS servers must source their lookups from port 53. ...
    (microsoft.public.windows.server.dns)
  • Re: cant open port 25, is there anything obvious in this acl?
    ... 30 permit tcp any 10.100.5.128 0.0.0.63 established ... 40 permit tcp any host 10.100.5.137 eq 443 ... 180 permit tcp any eq domain host 10.100.5.142 gt 1023 ... 190 permit udp any eq domain host 10.100.5.142 gt 1023 ...
    (comp.dcom.sys.cisco)