09-14-2011 06:57 AM
Hi there,
I'm currently dealing with a weird problem on a Cisco RVS4000.
I'm tring to connect to a IPSEC VPN Gateway (NETASQ) located on the lan side of the RVS4000.
I'm using Greenbow vpn client on the WAN side of the RVS4000
Basicaly i'm trying to get through the RVS
My VPN config is ok because i tested it on the lan side of the RVS
The RVS is configured like this:
NO VPN configured.
Block WAN Request :OFF
FIREWALL,IPS,DDOS are OFF
NAT forwarding on for UDP 500 and 4500 directed from the wan to the ip of the VPN gateway
Seems right because iv managed to do this with other routers (different brands) on another site
I've wiresharked my vpn client and i keep getting ICMP destination unreachable (PORT UNREACHABLE) after my ISAKMP launching packet.
Can the RVS nat these ports ?
05-06-2012 09:10 AM
I have the exact same annoying problem.
Could someone from the vendor advise or confirm this as a bug?
05-07-2012 01:50 AM
I've managed to discover the trick. These two ports are some kind of reserved for the cisco vpn system. You can fool this by nating These two ports to a different value on the wan side.
wan --700--470 ---CISCO --- 500- 4500 ---YourVpnequipement
05-07-2012 04:36 AM
I think this may be a workaround for a web server port, but not a solution for VPN ports.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide