pppoe with pix 506

I am trying to set up the pix 506 with pppoe to an at&t dsl connection. I am setting the pix up with the pppoe client config as follows.

: PIX Version 6.3(5) interface ethernet0 auto interface ethernet1 auto nameif ethernet0 outside security0 nameif ethernet1 inside security100 hostname domain-name clock timezone CST -6 clock summer-time CDT recurring fixup protocol dns maximum-length 512 fixup protocol ftp 21 fixup protocol h323 h225 1720 fixup protocol h323 ras 1718-1719 no fixup protocol http 80 fixup protocol ils 389 fixup protocol rsh 514 fixup protocol rtsp 554 fixup protocol sip 5060 fixup protocol sip udp 5060 fixup protocol skinny 2000 no fixup protocol smtp 25 fixup protocol sqlnet 1521 fixup protocol tftp 69 names name 192.168.1.20 Exch object-group service P2P_UDP udp port-object range 41170 41170 object-group service Peoplesoft tcp-udp port-object range 10030 10030 port-object range 16000 16000 access-list nonat permit ip 192.168.1.0 255.255.255.0 192.168.2.0

255.255.255.0 access-list nonat permit ip 192.168.1.0 255.255.255.0 192.168.254.0 255.255.255. 0 access-list nonat permit ip any 192.168.254.0 255.255.255.0 access-list nonat permit ip 192.168.1.0 255.255.255.0 192.168.1.0 255.255.255.12 8 access-list nonat permit ip any 192.168.1.0 255.255.255.128 access-list nonat permit ip 192.168.1.0 255.255.255.0 192.168.1.64 255.255.255.2 40 access-list vpn01 permit ip 192.168.1.0 255.255.255.0 192.168.2.0 255.255.255.0 access-list inbound01 permit icmp any any echo access-list inbound01 permit icmp any any echo-reply access-list inbound01 deny udp any object-group P2P_UDP any log disable access-list inbound01 deny udp any any object-group P2P_UDP log disable access-list inbound01 permit icmp any any time-exceeded access-list inbound01 permit icmp any any unreachable access-list inbound01 permit ip x.x.x.x 255.255.255.224 host x.x.x.x access-list inbound01 permit tcp any any eq pop3 access-list inbound01 permit tcp any interface outside eq www access-list inbound01 permit tcp any interface outside eq smtp access-list inbound01 permit udp any any eq snmp access-list inbound01 permit ip 192.168.254.0 255.255.255.0 any access-list inbound01 permit tcp any any eq pptp access-list inbound01 permit tcp any host x.x.x.x eq 3389 access-list inbound01 permit tcp any host x.x.x.x object-group Peoplesoft

access-list inbound01 permit icmp any any access-list outside_cryptomap_dyn_40 permit ip any 192.168.254.0

255.255.255.0 access-list outbound01 deny ip any host x.x.x.x log disable access-list outbound01 deny udp any any object-group P2P_UDP log disable access-list outbound01 deny udp any object-group P2P_UDP any log disable access-list outbound01 permit ip any any pager lines 24 logging on icmp permit any echo-reply outside icmp permit any unreachable outside icmp permit any time-exceeded outside mtu outside 1500 mtu inside 1500 ip address outside x.x.x.x 255.255.255.248 ip address inside 192.168.1.1 255.255.255.0 ip verify reverse-path interface outside ip audit info action ip audit attack action ip local pool users 192.168.254.1-192.168.254.254 ip local pool Pool1 192.168.1.65-192.168.1.79 pdm location Exch 255.255.255.255 inside pdm location 192.168.2.0 255.255.255.0 outside pdm location 192.168.1.101 255.255.255.255 inside pdm location 192.168.1.0 255.255.255.0 inside pdm location 192.168.1.19 255.255.255.255 inside pdm location 192.168.1.0 255.255.255.128 outside pdm location 192.168.1.16 255.255.255.255 inside pdm location 192.168.1.64 255.255.255.240 outside pdm location 192.168.254.0 255.255.255.0 outside pdm location 192.168.1.10 255.255.255.255 inside pdm logging informational 100 pdm history enable arp timeout 14400 global (outside) 1 interface nat (inside) 0 access-list nonat nat (inside) 1 0.0.0.0 0.0.0.0 0 0 static (inside,outside) tcp interface 3391 Exch 3391 netmask 255.255.255.255 0 0

static (inside,outside) tcp interface 800 Exch 800 dns netmask

255.255.255.255 0 0 static (inside,outside) udp interface snmp Exch snmp netmask 255.255.255.255 0 0

static (inside,outside) tcp interface 3390 192.168.1.16 3389 netmask

255.255.255 .255 0 0 static (inside,outside) tcp interface smtp 192.168.1.10 smtp netmask 255.255.255 .255 0 0 static (inside,outside) tcp interface 3389 192.168.1.10 3389 netmask 255.255.255 .255 0 0 netmask 255.255.255.255 0 0 access-group inbound01 in interface outside access-group outbound01 in interface inside route outside 0.0.0.0 0.0.0.0 x.x.x.x 1 timeout xlate 3:00:00 timeout conn 1:00:00 half-closed 0:10:00 udp 0:02:00 rpc 0:10:00 h225 1:00:00 timeout h323 0:05:00 mgcp 0:05:00 sip 0:30:00 sip_media 0:02:00 timeout sip-disconnect 0:02:00 sip-invite 0:03:00 timeout uauth 0:05:00 absolute aaa-server TACACS+ protocol tacacs+ aaa-server TACACS+ max-failed-attempts 3 aaa-server TACACS+ deadtime 10 aaa-server RADIUS protocol radius aaa-server RADIUS max-failed-attempts 3 aaa-server RADIUS deadtime 10 aaa-server LOCAL protocol local http server enable http 192.168.1.0 255.255.255.0 inside http 192.168.1.101 255.255.255.255 inside floodguard enable sysopt connection tcpmss 0 sysopt connection permit-ipsec sysopt connection permit-pptp crypto ipsec transform-set strong esp-3des esp-sha-hmac crypto dynamic-map outside_dyn_map 20 set transform-set strong crypto dynamic-map outside_dyn_map 40 match address outside_cryptomap_dyn_40 crypto dynamic-map outside_dyn_map 40 set transform-set strong netmask 255.255.255.255 isakmp identity address isakmp nat-traversal 20 isakmp policy 1 authentication pre-share isakmp policy 1 encryption 3des isakmp policy 1 hash sha isakmp policy 1 group 1 isakmp policy 1 lifetime 1000 isakmp policy 21 authentication pre-share isakmp policy 21 encryption 3des isakmp policy 21 hash sha isakmp policy 21 group 2 isakmp policy 21 lifetime 86400 telnet 192.168.1.0 255.255.255.0 inside telnet timeout 5 ssh x.x.x.x 255.255.255.255 outside ssh x.x.x.x 255.255.255.255 outside ssh 192.168.1.0 255.255.255.0 inside ssh timeout 5 console timeout 0 vpdn group pppoex request dialout pppoe vpdn group pppoex localname vpdn group pppoex ppp authentication pap vpdn username password ********* terminal width 80 Cryptochecksum:4ac78c16b020955fdb518349fd82a4b2 : end

The connection attempts never get past send_padi. Debugging info is as follows:

send_padi:(Snd) Dest:ffff.ffff.ffff Src:000b.5fea.c597 Type:

0x8863=PPPoE-Discove ry