Cisco PIX 515 PPTP, FTP and SMTP Problems
If you are trying to set up a PPTP VPN access and cannot connect to it using a Windows "dial up" or Windows VPN client. Usually, users will get an error message when using the built-in Windows VPN support: "Error 800: Unable to establish the VPN connection".
Either way, if you have a Cisco PIX 515 or Cisco PIX 515E and are having problems with PPTP VPNs (publishing and using) just run this through the command line and the firewall will allow PPTP traffic to flow through:
fixup protocol pptp 1723
There are more popular protocols that the Cisco PIX seems to break in their default setup and these include SMTP (TCP port 25) and FTP (TCP port 21). SMTP going through a Cisco PIX is very problematic as is encodes the characters a little differently then you would want it to and usually no mail is able to go though. You cannot send or receive. Just enter the commands below in your PIX and you should be good to go!
fixup protocol ftp 21
fixup protocol smtp 25
Recent Comments