Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
201
Views
0
Helpful
1
Replies

PIX to NetGear Troubles

millergm
Level 1
Level 1

‎11-14-2004 11:45 AM - edited ‎02-20-2020 11:44 PM

I have PIX 506e at office and NetGear FVS318 at home. I can create a VPN connection between the two (initiating it from the PIX as the PIX sits behind a SMC router that does not allow VPN traffic to originate from outside). I'm sure I have a VPN connection because on the PDM graphs, I see IPSEC and IKE tunnels that have been created and a status of QM_IDLE. My problem is that I cannot do anything across the tunnel I can ping from either network all day long and never get a reply back. I cannot see my office terminal server from my home computer. Below is my PIX listing. Passwords between the two devices are correct, as are the encryption/authentication/etc... settings.

my config file is attached

Any help would be appreciated.

Also, as my FVS318 outside IP is dynamically assigned, is there a way to configure the pix to look for a dynamic VPN host?

Thanks

Preview file
4 KB
0 Helpful
1 Reply 1

scoclayton
Level 7
Level 7

‎11-14-2004 06:06 PM

Based on your description, I can tell you that something (the SMC router??) is blocking the ESP packets (protocol that IPSec uses) between the PIX and the NetGear box. Unfortunately, there really are no other options that to allow ESP between the 2 firewalls. All of the IPSec transparency options are for client to concentrator (or PIX).

Scott

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card