I have a VPN Set up from a PIX behind a NAT device running 6.3.1 to a VPN Concentrator. The lan to lan VPN works fine (connecting as base group to the concentrator). Now, I would like to do two things. First, I would like to terminate client sessions to the PIX. I have passed UDP 500 and 4500 through the NAT device provided by my ISP (Broadmax DSL Modem/Router), but cannot get the VPN Client to connect. I do have "isakmp nat-traversal" turned on. I would also like to do a true lan to lan with shared key, but am not sure I can originate from the VPN 3000 side if the PIX side is behind a NAT device. Will either of these scenarios work?? If so, what do I need to do to get them to work?? ... View more

I have a PIX 506, trying to establish a tunnel to a Netscreen Model 50. When trying to bring the tunnel up, Phase 1 comes up fine, but get ISAKMP: reserved not zero on payload 5 in phase 2. Eventually, the tunnel comes up, after 4 or 5 minutes, and 4 or 5 thousand ping packets. When it's coming up, if you do a "show crypto isakmp sa" it shows additional sa's keep adding for the same peer. They are all in state QM_IDLE. Eventually, the VPN starts to work, but a number of the sa's remain. Typically, around 35 are present by the time the VPN comes up, and 15 to 20 remain after it's up. We are using group 2, 3DES, MD5. ... View more

I installed the Attendant Console on Callmanager and am getting the following error message when I start the client after logging in. “Initialization of Call Control Failed. Retrying…” I can go online, and the pilot point is functional, but I can't use the Console. ... View more

I have a PIX 501 at home, VPN'd to the 506 at the office. My 7940 at home, comes up, and I can access data services, but I cannot place calls. The SCCP stream shouldn't be PAT'd, because data to the other network matches a nat 0 access list on both sides of the VPN. What else might be wrong, or won't this work until the 6.2 Code for PIX is release. I kind of thought it's fixes were for voip streams that actually passed through via PAT or NAT, which mine shouldn't... ... View more

I have Webattendant installed on a system running Callmanager 3.1.2c. I used the Webattendant install from 3.1.2c. Everything seems to work except for dialing from the directory. If I follow the instructions, and use either the f key, or click on the column to search, and then dial the search criteria and hit enter, it dials whatever user was active when I started the search and THEN goes to the match. Any ideas what might be wrong??? ... View more

I had installed the Active Directory Integration on Callmanager 3.1.1. It was working fine. I then decided to implement Extension Mobility. When I installed Extension Mobility, you could change the Directory to install it to, but there was a context that wasn't changeable that pointed to cisco.com which wouldn't work in the AD integration. I went back to DC Directory to get Extension Mobility to work for now, but are there some details for implementing Extension Mobility in an AD environment? ... View more

Any idea how to fix Softphone in 3.1. worked fine before upgrade to 3.1, but since upgrade, the TSP doesn't see the extensions to control on the PC ... View more