Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2152
Views
0
Helpful
16
Replies

VPN Client 3.0.4 (C) fails behind 501

tfiorda
Level 1
Level 1

‎11-14-2007 07:54 AM - edited ‎03-03-2019 07:33 PM

I have just recently switched to using a pix 501 from a Linksys RVS4000. Using the RVS4000, I was able to establish an IPSEC VPN through that fw, but I've been unable to get the configuration correct for the PIX 501. It is supposed to support IPSEC Passthrough to allow the VPN.

The Connection establishes but I don't get any response from the remote. Probably because of the NAT that is happening.

Is there a way to configure the 501 to allow two way communication using the VPN client behind it? BTW, I am connecting to another 501 in the remote location.

Thanks,

Tony...

Labels:
0 Helpful
16 Replies 16

kc4ixi
Level 1
Level 1
In response to tfiorda

‎12-10-2007 01:45 PM

I was able to resolve this issue by adding the following command on my ASA that was acting as the VPN server.

isakmp nat-traversal 20

Hope that helps!

0 Helpful

tfiorda
Level 1
Level 1
In response to kc4ixi

‎12-10-2007 04:21 PM

Well, I've tried that before, BUT...no one said it needed to be at the far end. Since I am going through one Pix to terminate the tunnel at another, and it worked fine if the VPN Client was in the wild (internet connected outside of the firewall), I didn't suspect the far end being the problem. I should have though.

I added that statement to both side and now I have data passing and can get to the resources at the other end.

Thanks for adding the statement, "acting as the VPN server". That did it!

Tony...

0 Helpful
Customers Also Viewed These Support Documents