Re: a server vpn behind a cisco router

kike.alvarez · ‎03-03-2007

Hello. I have a problem. I have a ms vpn l2tp/ipsec server behind a router cisco. The router cisco have a public ip and it nat 3 vpn port of vpn l2tp/ipsec to vpn server ( udp 500,1701 & 4500). But it doesnt conect. If i try the vpn server with a clinet in the same lan it conect, but with the other client outside lan dont conect. I suppose that i would add any command that i unknown. I had nat with the next command :

ip nat inside source static udp inside port outside port. Someboy knows if i am doing somthing incorrect

Danilo Dy · ‎03-03-2007

Check the router logs which other port failed to connect and add them in router NAT

kike.alvarez · ‎03-05-2007

thank you. I made a better thing, i add in the roter ip nat inside source static inside outside for rerouter all trafic to the vpn server. But it continues failed

Kamal Malhotra · ‎03-05-2007

Hi,

What about the access-groups on the interfaces? Do we have any? If yes, try removing those for testing and if it works then we'll need to allow the traffic on those specific ports like 500, 1701, 4500 etc. And what kinda logs do we get when we try to connect?

Regards,

Kamal

kike.alvarez · ‎03-05-2007

hi.

I don't have any filter in this interface. As for the log, i don`t know how to get it. i suppose that i will have to configure a syslog server. Is it this way?