hi all

i try to make a VPN tunnel trouth my pix firewall. i open all
nessecary(so, i hope i open all) ports, here my access-list
configuration:

access-list cached ACL log flows: total 0, denied 0 (deny-flow-max
1024)
alert-interval 300

access-list acl_out; 6 elements
access-list acl_out line 1 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq www (hitcnt=0)
access-list acl_out line 2 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq https (hitcnt=0)
access-list acl_out line 3 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq ftp (hitcnt=0)
access-list acl_out line 4 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq smtp (hitcnt=0)
access-list acl_out line 5 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq domain (hitcnt=0)
access-list acl_out line 6 permit icmp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 (hitcnt=0)

access-list acl_in; 11 elements
access-list acl_in line 1 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq www (hitcnt=0)
access-list acl_in line 2 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq https (hitcnt=0)
access-list acl_in line 3 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq ftp (hitcnt=0)
access-list acl_in line 4 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq smtp (hitcnt=0)
access-list acl_in line 5 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq isakmp (hitcnt=0)
access-list acl_in line 6 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq 1701 (hitcnt=0)
access-list acl_in line 7 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq 1723 (hitcnt=0)
access-list acl_in line 8 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq 50 (hitcnt=0)
access-list acl_in line 9 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq 51 (hitcnt=0)
access-list acl_in line 10 permit tcp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq 500 (hitcnt=0)
access-list acl_in line 11 permit udp 139.79.159.0 255.255.255.0
10.0.1.0 255.255.255.0 eq domain (hitcnt=0)

access-group acl_in in interface outside
access-group acl_out in interface inside

is something wrong or not stated what i need?

best regards
robin kocher