New to pix 501 VPN help

[digiraven]

I've looked through these forums and they haven't answered my question very well. When I bought this 501 which has 10 user license/3des package cdw told me that this was the vpn server that I was looking for to install in a small office. I basically want use the winxp vpn dialer from the outside so I can remote desktop to the XP machines in the office. The office has a dsl modem hooked up the 501 pix firewall. The rest of the network is composed with winxp pro machines that are peer to peer. 6 in all. No server yet. Did I purchase the wrong device for this setup? If not where can I find a step by step instruction on how to accomplish this. Please help me on my ignorance. Thanks

Digi

 

[dopehead]

I think the Pix Device Manager could help you, it has basic webdriven wizards for vpn server, in your case i guess it is PPTP you wan't.

Dunno if it's preloaded on a 501 today, if not contact your supplier of cisco and get them to send you the pdm file.


Jan

 

[digiraven]

Ok I have the pdm wizard and got to the part that say enable easyvpn. It asks for the IP address of the easyvpn server. So the question I am asking do I put itself in the primary easyvpn server section? Please help me figure this by monday.

 

[dopehead]

Well, you are not configuring the right feature there, you don't have a server, cause you are the server. Easyvpn won't work with anything other than cisco's own vpn client, you need to enable pptp vpn server instead.

Jan

 

[digiraven]

Ok I finlly got the vpn to work but I do have another question lets say that this pix 501 is now behind a router. The router supplies the IP address to the pix so how would I VPN to the pix since it is recieve an internal IP address from the router?

 

[dopehead]

You should create a static NAT translation between the official address on the router, and a statically assigned ip on the inside, that you give the pix.

Jan