Multiple PPTP Group Policies in PIX

Discussion in 'Cisco' started by Irving, Nov 26, 2004.

  1. Irving

    Irving Guest

    We are currently using PIX 506 with VPN support to allow PPTP to
    connect and everything is working very well (insert "Kiss of Death"
    here).

    We are now trying to seperate different VPN groups. For example, we
    have a sales group that we would like to use the IP Address pool
    "sales-pool". Where as developers would use "Dev-pool", etc.

    We have created the various pools and we can connect successfully with
    the new usernames but we find that we always get an IP Address in the
    main group.

    How do you associate a username with a group?

    Thanks in advance,
    Irving
     
    Irving, Nov 26, 2004
    #1
    1. Advertising

  2. In article <>,
    Irving <> wrote:
    :We are currently using PIX 506 with VPN support to allow PPTP to
    :connect and everything is working very well (insert "Kiss of Death"
    :here).

    :We are now trying to seperate different VPN groups. For example, we
    :have a sales group that we would like to use the IP Address pool
    :"sales-pool". Where as developers would use "Dev-pool", etc.

    :We have created the various pools and we can connect successfully with
    :the new usernames but we find that we always get an IP Address in the
    :main group.

    :How do you associate a username with a group?

    You just -might- be able to do it by using

    vpdn group GROUPNAME localname USERNAME in conjunction with
    vpdn gorup GROUPNAME client configuration address local POOLNAME

    But I don't really expect that to work.


    I would suggest not using PPTP and instead using the Cisco VPN client
    and giving each of the groups a different groupname. The local pool
    chosen for a vpngroup can be dependant on the group.

    If the remote users are using XP then you could (as I recall) also use
    IPSec.
    --
    Are we *there* yet??
     
    Walter Roberson, Nov 26, 2004
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. Ola Theander
    Replies:
    0
    Views:
    653
    Ola Theander
    Sep 8, 2004
  2. rmcnutt
    Replies:
    1
    Views:
    11,319
    mcaissie
    Jul 13, 2004
  3. Mr K

    Group Policies

    Mr K, Feb 7, 2004, in forum: MCSE
    Replies:
    1
    Views:
    547
    Rowdy Yates
    Feb 7, 2004
  4. jirwin

    Group Policies On Windows 2000 Server

    jirwin, Oct 20, 2004, in forum: Computer Support
    Replies:
    2
    Views:
    502
    Lady Chatterly
    Oct 21, 2004
  5. Erik

    Group Policies Problems

    Erik, Oct 2, 2007, in forum: Computer Support
    Replies:
    7
    Views:
    7,699
    madcow182
    Oct 18, 2007
Loading...

Share This Page