OK. I am little irritated.
I have done what the instructions said to do. I added force_udp_encapsulation (true) on the client.
I have added the :isakmp.udpencapsulation (
:resource (
:type (refobj)
:refname ("#_CP_IPSec_transport_encapsulation")
)
:active (true)
but changed the reference to the service name that comes with SP3 (VPN1_encapsulation).
The client sends the UDP traffic out properly but the firewall sends IPSEC straight on the return.
What have I missed?
I am running SP3 on the FIREWALL and client. Any ideas?
Brian Gibson
AVP, Network Security
Firewall Administrator
Gruntal & Co L.L.C
212-820-6431
fax 212-820-8074