Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
347
Views
0
Helpful
1
Replies

Problem with UDP Nat-T

george.goebel
Level 1
Level 1

‎10-11-2007 06:28 AM - edited ‎03-09-2019 07:00 PM

Has anyone else seen a problem with the Cisco VPN client versions 4.8 and 5.0. We have always used the NAT-T successfully. After upgrading to version 4.8 and 5.0 the UDP connections no longer work. TCP works but UDP doesn't. All of the previos older clients work just fine. Anyone else seen this.

Labels:
0 Helpful
1 Reply 1

ebreniz
Level 6
Level 6

‎10-17-2007 10:50 AM

IKE fragmentation on the Cisco VPN client 4.0.5.D and above is broken for UDP, and fragmentation at IP level is used instead, IKE fragmentation seems to work correctly for TCP encapsulated IKE packets (which are TCP/500), configuring TCP encapsulation could be used as a workaround. Change that affect the packets going from the main location to the spokes on the port UDP 500. When you enable nat-t you allowed the connection on a different port letting the other routers to be aware of it and try another port for connection.

0 Helpful
Customers Also Viewed These Support Documents