hehe.......... the natting is your issue.
on dialer0 you have 'ip nat outside' and on vlan1 'ip nat inside'.
you need to map these ports to your inside pptp/isa server:
1. TCP/1723
2. IP protocol 47/GRE
check if your mapping is correct using show ip nat translation command.
this link may help you:
http://www.cisco.com/en/US/tech/tk827/tk369/technologies_configuration_example09186a00800949c0.shtml
So that when the PPTP traffic hits Dialer0 interface it will direct it to
the ISA server. at the moment with your current config the traffic gets lost
between your dialer0 and vlan0 interface :(
To make sure above solution work here is what you can do:
remove your ip nat command on dialer0 and vlan0 eg. no ip nat inside on
vlan0 and no ip nat outside on vlan1 then do a quick pptp test from wan to
isa server. PPTP should work :)
On Sun, Apr 12, 2009 at 4:54 PM, marish shah <contactmarish_at_gmail.com>wrote:
> Dear plz find below my router configuration
>
> MD-005#sh run
> Building configuration...
>
> Current configuration : 1968 bytes
> !
> version 12.4
> no service pad
> service timestamps debug datetime msec
> service timestamps log datetime msec
> service password-encryption
> !
> hostname MD-005
> !
> boot-start-marker
> boot-end-marker
> !
> enable secret 5 $1$WP96$zGaFBqkGZc/whc1GZd77e.
> !
> aaa new-model
> !
> !
> !
> !
> aaa session-id common
> !
> !
> dot11 syslog
> no ip dhcp use vrf connected
> ip dhcp excluded-address 192.168.1.1
> !
> ip dhcp pool 1
> network 192.168.1.0 255.255.255.0
> default-router 192.168.1.1
> dns-server 212.76.68.200 212.76.68.201
> lease 0 2
> !
> !
> ip cef
> ip name-server 212.76.68.201
> ip name-server 212.76.68.200
> !
> !
> !
> username admin password 7 0005170B0D55
> !
> !
> archive
> log config
> hidekeys
> !
> !
> !
> !
> !
> interface ATM0
> no ip address
> no atm ilmi-keepalive
> pvc 0/35
> pppoe-client dial-pool-number 1
> !
> dsl operating-mode auto
> !
> interface FastEthernet0
> !
> interface FastEthernet1
> !
> interface FastEthernet2
> !
> interface FastEthernet3
> !
> interface Vlan1
> ip address 212.76.78.81 255.255.255.248 secondary
> ip address 192.168.1.1 255.255.255.0
> ip nat inside
> ip virtual-reassembly
> ip tcp adjust-mss 1452
> hold-queue 100 out
> !
> interface Dialer1
> ip address negotiated
> ip mtu 1442
> ip nat outside
> ip virtual-reassembly
> encapsulation ppp
> ip tcp adjust-mss 1394
> dialer pool 1
> dialer remote-name redback
> dialer-group 1
> ppp authentication pap chap callin
> ppp chap hostname ysteel2_at_4096.sahara.net.sa
> ppp chap password 7 061F1C35494B054B
> ppp pap sent-username ysteel2_at_4096.sahara.net.sa password 7 08385F5A0C1C0
> ppp ipcp dns request
> ppp ipcp wins request
> !
> ip forward-protocol nd
> ip route 0.0.0.0 0.0.0.0 Dialer1
> !
> ip http server
> no ip http secure-server
> ip nat inside source list 123 interface Dialer1 overload
> !
> access-list 23 permit any log
> access-list 102 deny ip 192.168.1.0 0.0.0.255 192.168.0.0 0.0.255.255
> access-list 102 permit ip 192.168.1.0 0.0.0.255 any
> !
> control-plane
> !
> !
> line con 0
> no modem enable
> line aux 0
> line vty 0 4
> access-class 23 in
> !
> scheduler max-task-time 5000
> end
>
> MD-005#
>
> Thanks.
>
>
>
>
>
>
>
>
>
> On Sat, Apr 11, 2009 at 6:09 PM, Radioactive Frog <pbhatkoti_at_gmail.com>wrote:
>
>> Make sure that you are not using NAT on the router. If you are using NAT
>> then you need to map your WAN IP's for PPTP ports to your ISA server. So
>> when pptp request comes router throughs it direct to ISA server.
>>
>> Post your router config.
>>
>> frog
>>
>>
>>
>> On Sat, Apr 11, 2009 at 9:23 PM, marish shah <contactmarish_at_gmail.com>wrote:
>>
>>> HI Experts,
>>> I'm trying to establish a pptp connection from outside to
>>> my
>>> ISA server,My scenario is simple, I'm using CISCO 857 and after this ISA
>>> server and I enable pptp on ISA I did'nt configure any pptp configuration
>>> on
>>> CISCO 857,So when I try to establish my VPN connection from inside (
>>> same
>>> LAN ) I can its work fine but from outside I can't Its show username &
>>> password prompt n when I put its not work,So my Q is there any config for
>>> pptp needed on CISCO 857 if yes then what it is .And If there is no
>>> config
>>> needed so where is problem.
>>>
>>>
>>> Thanks,
>>> Regards,
>>>
>>>
>>> Blogs and organic groups at http://www.ccie.net
>>>
>>> _______________________________________________________________________
>>> Subscription information may be found at:
>>> http://www.groupstudy.com/list/CCIELab.html
Blogs and organic groups at http://www.ccie.net
Received on Mon Apr 13 2009 - 15:36:40 ART
This archive was generated by hypermail 2.2.0 : Mon May 04 2009 - 07:39:11 ART