Question about Cisco PIX 501 Firewall

1 Answer

How do I set up a VPN connection with PIX 501?

Our Linksys router can do it, but the 501 PIX cannot. How do I setup VPN so I can access my server from outside the network?

We are totally idiots, so please be kind and not use techie-talk, and don't suppose we know anything.

Thanks

Posted by on

  • aftecboy Nov 11, 2008

    Thanks for responding ex_ocsic_cat,

    Well, I briefly looked at the link you sent to me, and during the quick browse through it looks intimidating for a novice office worker like me. I am sure that you are well versed in the language of Cisco. I will give it a try and follow what they are saying, but honestly I am not sure that I will get too far.

    We would be using the PPTP as we do not have the download capability with Cisco. The PIX router is used and was one that was upgraded on another job by a third party support guy, they gave the PIX to him, and he then passed it on to us to replace our failing Linksys router. The support guy is no longer available for working on our systems as he took a full-time job with another company before he could get our router configured. So, this has all fallen to me to deal with. I make web sites and applications, thus I am not a network person. That is why the Cisco terminology is all foreign to me.

    Thanks for the link and offer to help.




  • ex_ocsic_cat May 11, 2010

    Hi Aftecboy,



    You can configure remote access vpn using your pix501 in 2 ways.



    1.) cisco vpn client --> this requires the cisco vpn client software which is downloadable in cisco.com (if you have software download access)

    2.) pptp --> this is also known as the microsoft vpn (no extra software to be installed - you just need a machine running windows to connect)



    You can check on the document below which explains everything:



    http://www.cisco.com/en/US/docs/security...



    If you can provide me temporary access to the device (temporary ssh connection) then I can configure it for you. If this is not possible, then you can provide me a copy of the pix config (without the passwords and usernames).



    Let me know also which one would you like to configure - vpn client or pptp?





    Regards,



    ex_ocsic_cat

×

1 Answer

  • Level 1:

    An expert who has achieved level 1.

    Problem Solver:

    An expert who has answered 5 questions.

  • Contributor
  • 7 Answers

No worries. Just give it a try then let us know should you get any problems or follow-up questions.

Posted on Nov 12, 2008

1 Suggested Answer

6ya6ya
  • 2 Answers

SOURCE: I have freestanding Series 8 dishwasher. Lately during the filling cycle water hammer is occurring. How can this be resolved

Hi,
a 6ya expert can help you resolve that issue over the phone in a minute or two.
best thing about this new service is that you are never placed on hold and get to talk to real repairmen in the US.
the service is completely free and covers almost anything you can think of (from cars to computers, handyman, and even drones).
click here to download the app (for users in the US for now) and get all the help you need.
goodluck!

Posted on Jan 02, 2017

Add Your Answer

Uploading: 0%

my-video-file.mp4

Complete. Click "Add" to insert your video. Add

×

Loading...
Loading...

Related Questions:

1 Answer

How connect cisco 5015 vpn with barracuda linkbalancer 330


Your Internet gateway <--- primary router

Port #1 on primary router <---> VPN server
Port #2 on primary router <--> Load Balancer
Load Balancer <--> web-server #1
Load Balancer <--> web-server #2
Load Balancer <--> web-server #3

VPN traffic enters your network, through the router to the VPN server, and then VPN-server back through the router to your internal servers. Web-traffic goes through the Load Balancer, for distribution to the collection of servers.

Jun 12, 2014 | WatchGuard Technologies WATCHGUARD TECH...

Tip

Why can Networked Devices not be used when a VPN connection is active?


With most VPNs, as soon as the VPN connection is established, it will take precedence over all other network connections. Access to the Internet (other than to keep the VPN connection itself alive) will go via the VPN and the corporate network you are connected to, rather than the local ISP. Furthermore, access to the local network is temporarily disabled.

As a result, your local print server may not be accessible,
you cannot use devices via the Network USB hub, or the USB ports on your router (if it has these), you may not even be able to access your local router's configuration page or ping the router or other machines in the local network.

This is done because of security reasons.
When a computer is connected to a corporate network via a VPN, the administrator needs to make sure that that machine can not act as a some form of a gateway enabling other machines in the local network to access that corporate network in any way. For that reason, the machine connecting via the VPN must temporarily be isolated from the local network.

on May 05, 2010 | Computers & Internet

2 Answers

I have two Cisco routers one is a 501Pix(located at branch Office), the other is a 515E Pix (located at main office). I've configured a vpn tunnel to the router at the main office. The router at the branch...


Hi,
  1. Please check whether the Tunnel Phase 1 and Phase 2 are Up.If Not Proceed Next, if Yes Proceed to point 4
  2. Please check the peer IP is reachable
  3. Please check the configuration and the encapsulation method used
  4. Check whether in the Match Address whether the IP has been Allowed If Yes Proceed Next
  5. The Branch PIX will be in the Outside interface of the Main PIX, security Level will be enabled so do NAT. If Yes Proceed next
  6. If unable to ping enable the Inspect ICMP in the global policy to enable ping If Yes
  7. If all The above are done. please check the routes between the 2 remote computer.
Please check all the above point, surely your problems will be solved

Feb 26, 2011 | Cisco PIX 501 Firewall

1 Answer

Hello. It appears my router is blocking VPN access to the office server. I can connect using the ethernet cable so have isolated the problem to the router firewall. How do I get around this? Thanks


Hi
I will make a couple of assumptions on you setup. First, you have some type of highspeed internet. You have a retail type router/firewall plugged into your internet modem. You are using a VPN Client software installed on a PC or Laptop. By stating that when you connected using your Ethernet cable, you were plugged directly into the Internet modem.

Basically, what you have here is a configuration issue with your Router/Firewall. I use the Cisco VPN Client Software from home. This software uses UDP over TCP port 10000. Your VPN Client will use something along this line as well. So, you need to do one of two things here. Determine what Protocol and Port your VPN software uses. Login into you Router/Firewall and add that to your outbound allowed traffic. Or login into your Router/Firewall and configure it to allow all outbound traffic.

If you are not sure how to do this, the documentation that came with your Router should contain a Tech Support number to call. They can walk you through this in short order. Otherwise, post your EXACT make and model of your Router/Firewall and I will try to get the information for you.

Hope this helps.
Brian

Jun 30, 2010 | Linksys Computers & Internet

1 Answer

I have an older Cisco PIX 506 with two VPN connections. One links two offices (PIX-PIX VPN) together, another is for staff to access email & files. The file server on the local LAN the PIX is on are...


It could be a missing route... are the file server and email server on the same subnet? If they are then it is possibly not a routing issue.

Also it would be worth checking the tunneling settings for the VPNs... if you have specifed either only the fileserver subnet or specifically the file server address, then this could be the reason they can get to nothing else.

Hope that this has helped a little :)

Apr 09, 2010 | Cisco PIX 506E 3DES/AES bundle (chassis,...

1 Answer

How to routing router static ip address and local


Use the Sonicwall configuration wizard..

Please find below is to configure what ever you want.

Setup Wizard - This wizard will help you quickly configure the SonicWALL to secure your Internet connection. Once completed, you can use the SonicWALL Web Management Interface for additional configuration.

Registration & License Wizard - This wizard will help you register you and your firewall with mysonicwall.com and obtain licenses for additional Security Services features.

PortShield Interface Wizard - Segment and configure the integrated managed LAN switch of the SonicWALL.

Public Server Wizard - Quickly configure your SonicWALL to provide public access to an internal server.

VPN Wizard - Create a new site-to-site VPN Policy or configure the WAN GroupVPN to accept connections from the SonicWALL Global VPN Client
Thanks
..

Apr 22, 2009 | SonicWALL TZ170 (01-ssc-5740) Firewall

1 Answer

How to connect to my PIX 501 and use Windows Remote Desktop?


Here's a real simple problem to your remote access problems.
Go to: http://www.logmein.com
Sign up for a free acct, download/install their free software on your Server.
Now go over to your laptop, login to your new logmein acct.
In the next page, you'll see your Server listed. Click on it - follow instructions to connect.
This will tunnel through whatever stuff you have on your network!
Trust me - esp. in your scenario, this is *by far* the *simplest remote connect you'll ever perform! And it just .... works! Everytime.

gurutim

Mar 16, 2009 | Cisco PIX 501 Firewall

2 Answers

SIte to site vpn/remote desktop


Open up the vpn client any any of the working machine, and then

click on

file>>save Prfoile>>give a name

Take a copy of that and paste it in your machine.

On your machine install the vpn client (Straight Forward Installation). Then

Click on Import Profile , Identify the location where you have pasted the profile (Which is copied from other machine).

You are done with that.


Mar 13, 2009 | Cisco PIX 501 Firewall

1 Answer

DMZ HOST IN FVS 124-G


The Netgear FVS124-G is a superb combo VPN firewall DSL/Cable small business router. Loads of features and Dual Wan to boot. I highly recommend it's use in small businesses But... Keeping the necessary firewall, you are missing another component in a properly segmented network, a VLAN switch. It is highly customizable and gives you the configurability and speed you are asking for. Look at it's features here: ftp://downloads.netgear.com/files/FSxxxT_GSxxxT_smartswitch_UserManual.pdf The normal network security plan is: Internet -->Firewall-->Router (or Firewall/Router)-->VLan Switch-->Individual computers or VLan subnets. Using these two components together makes a more configurable and MUCH easier to setup network than using, say, one Sonicwall, or one CISCO PIX-501-BUN-K9 (which doesn't do VLan and you have to know Pix commands) You get FREE pre-sales and FREE post-sales support from Netgear, so call them on what makes sense for your situation. Sales Support (408) 907-8000 OR Email at: sales@netgear.com ZT3000 "Beta tester of "0"s and "1's"

Aug 03, 2007 | NetGear ProSafe FVS124G (FVS124GNA)...

3 Answers

Setting up a VPN through watchguard


The key with any VPN solution is to make sure that the configurations on both ends match. I am not very familiar with this particular product, but it looks like you need to have the proper VPN licenses installed first. There are two types of VPN you can do. 1) Site to Site - This is where the are two static boxes that you want to create an encrypted tunnel between 2) Remote User access - This is where mobile users connect to a central site over an encrypted tunnel from their home or on the road. Next, take a looks at the User Guide PDF here: https://www.watchguard.com/help/documentation/soho6.asp Chapter 10 tells how to configure the VPN on the Firebox side. You would just duplicate your settings if your doing option #1. Chapter 11 tells how to configure the VPN on the client side. This section would tell you how to configure the client software for option #2. Hope this helps.

Aug 29, 2006 | WatchGuard Technologies FireBox SOHO 6...

Not finding what you are looking for?
Cisco PIX 501 Firewall Logo

Related Topics:

802 people viewed this question

Ask a Question

Usually answered in minutes!

Top Cisco Computers & Internet Experts

Prashant M
Prashant M

Level 3 Expert

2259 Answers

brian soufane

Level 3 Expert

693 Answers

Les Dickinson
Les Dickinson

Level 3 Expert

18333 Answers

Are you a Cisco Computer and Internet Expert? Answer questions, earn points and help others

Answer questions

Manuals & User Guides

Loading...