Hi ...
Im using the Cisco VPN clients 3.1 and 3.0.6. When dialing up everything
works fine !!! However, when a user connects from a remote office, ie behind
some NAT'ing device ... a connection is made .. but the remote office client
cannot access/ping any devices on the private IP address s
On the VPN concentrator, system>>user management>>group>> IPsec tab >> you
need to check "IPSec through NAT"
Also you need to make sure your PIX is configured to pass IPsec(AH,ESP),
ISAKMP, and UDP encapsulation traffic.
Ruihai
""Paul"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]
So how does the Linksys or cisco 800 handles the IPSec thru PAT then ?
Thanks.
Alex Lee
""Lidiya White"" wrote in message
news:[EMAIL PROTECTED]...
> PIX doesn't support IPSec transparency/IPSec over TCP. Concentrators do.
> It all depends on the device that is between your client and PIX, tha
2002 3:20 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN client and NAT [7:47430]
So how does the Linksys or cisco 800 handles the IPSec thru PAT then ?
Thanks.
Alex Lee
""Lidiya White"" wrote in message
news:[EMAIL PROTECTED]...
> PIX doesn't support IPSec transpa
within UDP and sending it to a negotiated port.
Doug
-Original Message-
From: ""[EMAIL PROTECTED] [mailto:""[EMAIL PROTECTED]]
Sent: Wednesday, June 26, 2002 11:20 AM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]
Lidiya,
On the pix when you c
"Robertson, Douglas"
To:
Sent: Wednesday, June 26, 2002 6:15 PM
Subject: RE: Cisco VPN client and NAT [7:47430]
> In most cases the PIX does not support VPN's over PAT you need a static
NAT
> to establish a VPN tunnel.
> Protocol 50 (Encapsulating Security Payload [ESP]) ha
PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Alex Lee
Sent: Wednesday, June 26, 2002 8:20 AM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN client and NAT [7:47430]
So how does the Linksys or cisco 800 handles the IPSec thru PAT then ?
Thanks.
Alex Lee
""Lidiya White""
EMAIL PROTECTED]] On Behalf Of
[EMAIL PROTECTED]
Sent: Wednesday, June 26, 2002 10:20 AM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]
Lidiya,
On the pix when you configure Ipsec you configure a pool of addresses
that
your Ipsec clients will use on your own network. For instance
See inlines
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Paul
Sent: Wednesday, June 26, 2002 5:11 PM
To: [EMAIL PROTECTED]
Subject: Re: Cisco VPN client and NAT [7:47430]
>> Cool, so the PIX will not support VPN's over PAT !!!
D] [mailto:[EMAIL PROTECTED]] On Behalf Of
Lidiya White
Sent: Wednesday, June 26, 2002 7:56 PM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]
See inlines
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Paul
Sent: Wednesday, June 26,
CTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
supernet
Sent: Wednesday, June 26, 2002 11:31 PM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]
Lidiya,
I didn't try PIX, but I tried a 1605: Main office
3030---Internet---1605---VPN clients. It worked fine. 1605 was
configu
2002 9:56 PM
To: 'supernet'; [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430]
I bet you were using IPSec over TCP. Then it really doesn't matter what
is in the 'middle'. Your Cisco 1605 will see only tcp traffic, not esp.
Cisco 1600 is not IPSec aware (and don
Yes linksys has that option, I ran into that problem
Its under the advance option
-Original Message-
From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of
Lidiya White
Sent: Wednesday, June 26, 2002 9:34 PM
To: [EMAIL PROTECTED]
Subject: RE: Cisco VPN client and NAT [7:47430
13 matches
Mail list logo
