RE: No connection once the translation rules are applied

["Joshua Vince" <Josh.Vince () bcgsys com>]

Your static command should be:

static (inside,outside) xxx.xxx.xxx.xxx 192.168.1.10 netmask 255.255.255.255 0 0

where xxx.xxx.xxx.xxx is another valid routable IP address in the same subnet as the outside address that is being 
routed to you by your ISP.

Josh

-----Original Message-----
From: firewall-wizards-admin () honor icsalabs com
[mailto:firewall-wizards-admin () honor icsalabs com]On Behalf Of
geoffreyh () frontlinedefensesystems com
Sent: Thursday, December 11, 2003 8:10 AM
To: firewall-wizards () honor icsalabs com
Subject: [fw-wiz] No connection once the translation rules are applied




I have a 501 v. 6.3(1). I am attempting to establish a PPTP VPN server 
(192.168.1.10) behind the firewall. I lose Internet connectivity once I apply 
the translation rules. I do not have an electronic copy available, but here is 
a quick synopsis of the pertinent entires.


fixup protocol pptp 1723
access-list outside_access_in permit gre any host 192.168.1.10
access-list outside_access_in permit tcp eq pptp host 192.168.1.10 eq pptp
access-list outside_access_in permit icmp any any echo-reply
ip address outside xxx.xxx.xxx.xxx 255.255.255.0
ip address inside 192.168.1.1 255.255.255.0
nat (inside) 1 0.0.0.0 0.0.0.0 0
static (inside,outside) 192.168.1.10 192.168.1.10 netmask 255.255.255.255 0 0
access-group outside_access_in in interface outside

What am I missing here?

Geoff


_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards