Do i have a option to modity IPSec related ports on router IOS ???As i do on a Concentrator 3030 ?What if i would like the IPSec tunnel to establish over non-standard ports !!??
Hello,This seems to be a MTU issue. Your config and complete debugs will help. In the meantime follow the link below to see if this helps!http://www.cisco.com/en/US/tech/tk827/tk369/technologies_white_paper09186a00800d6979.shtmlThanks!
Dave,Its clear that your vpn tunnel fails on pgase 2 negotiation. Do you have full debugs? ( debug cry isa and debug cry ipsec ) ?Also Can you capture debugs when its the other side initiating the vpn tunnel? Thanks!
Jeff,The order is NAT and then Encryption from outgoing packet and order is reversed for return traffic i.e decryption and then NAT.In your case you have to made a small change in your access-list 100. You have to add another statement in access-lis...
Hello,I believe this is what you are lookign for:http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a0080093f89.shtmlCheck your config once more, most likely you have missed the sysopt connection permit-pptp on y...
If your intention is to configure PIX to allow ipsec passthrough then "sysopt connection permit-ipsec" won't help. You either need fix-up esp-ike" or static commands for each client behind the pix.If you are terminating vpn on pix itself the using "s...