Re: 3DES through PIX

Fri, 30 Mar 2001 08:25:54 -0800 

VPN has to be on an internet accessible IP.  You can set up an ACL or
static/conduit to give the internal VPN box a public IP.  Make sure you open
the correct ports.  tcp port 1723 and gre need to be opened to it.  As long
as you're not using PAT it will work.  Hopefully you have a free public IP
you can assign to the box or it won't work unless you use the PIX as the
IPSec VPN with Radius or TACACS+.


----- Original Message -----
From: "Ragavendran K Rao (CTS)" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Friday, March 30, 2001 7:57 AM
Subject: 3DES through PIX


> experts,
> i have got an access VPN connection to be configured to connect one of the
> VPN switches. i have got a pix, which is configured to translate the
inside
> ip address to a internet routable ip address. but for the NAT function,
the
> PIX does not do anything relating to ipsec. the cisco client we are using
> using 3DES whereas my PIX IOS is not enabled for 3DES. but as i said, the
> PIX is just passing whatever traffic to the internet. now, this conneciton
> does not go through.
>
> what could be the reason ? do i have to necessarily enable 3DES on PIX ?
>
> cheers,
>
> This e-mail and any files transmitted with it are for the sole use of the
intended recipient(s) and may contain confidential and privileged
information.
> If you are not the intended recipient, please contact the sender by reply
e-mail and destroy all copies of the original message.
> Any unauthorised review, use, disclosure, dissemination, forwarding,
printing or copying of this email or any action taken in reliance on this
e-mail is strictly
> prohibited and may be unlawful.
>
> Visit us at http://www.cognizant.com
>
> _________________________________
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
>

_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]

Reply via email to