I Need To Make A Change With My IT Support! Call (225) 706-8414

Recreating VPN profile for a PIX

You want to create the VPN profile for a Cisco PIX or Cisco ASA. This results in the PCF file that can be distributed to users.

Solution

Assuming you have access to the PIX itself and just need to rebuild the PCF file, you would follow these steps:

  1. Set up a TFTP server somewhere that the PIX can talk to (from here on, I’ll assume the PIX is at 192.168.1.1 and your TFTP server is on 192.168.1.2)
  2. SSH/Telnet into the PIX and enable privileged commands
  3. Save the PIX’s configuration to the TFTP server:
    wr net 192.168.1.2:pix-config.txt
  4.  Logoff the PIX and switch to the machine running your TFTP server
  5. Open the pix-config.txt file you created and look for a lines starting “vpngroup”; there’s probably several
    vpngroup YourVPNGroupName address-pool YourVPNPool
    vpngroup YourVPNGroupName dns-server 192.168.1.2 192.168.1.3
    vpngroup YourVPNGroupName wins-server 192.168.1.2
    vpngroup YourVPNGroupName default-domain your.dom.local
    vpngroup YourVPNGroupName idle-time 1800
    vpngroup YourVPNGroupName password SomePassword
  6. You’ll need the group name (“YourVPNGroupName” here) and the password (“SomePassword” here)
  7. Open up your VPN client and click the “New” button.
  8. Fill in the group authentication settings from the config and click save:
  9. You’ll be able to save the configuration as a PCF file.

Concerned About Cyber Attacks?

CLICK HERE >

Want to Migrate to the Cloud?

CLICK HERE >
Office 365

Ready to Experience Microsoft Office 365?

Want the latest IT news directly in your inbox? Subscribe now!