Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
The VPNClient tries to send a UDP packet (Port 62514)to the cluster IP-Adress of the VPN-concentrator.If this packet is dropped by the clients personal firewall (Always On selected) the VPN connection can't be established.There is no documentation on...
Thanks for your reply,As the Q&A says, these ports should be used for local communication on the client only (127.0.0.1). Why are packets sent from the VPNClient to the VPN3000?And why does the connection fail if this packet is dorped by the personal...
Checkpoint does not support negotiation of protocol based SA's. To restrict the traffic in the tunnel to TCP use the "no sysopt connection permit-ipsec" command and attach an access-list to the interface which points to the checkpoint firewall. Allow...
Hi David,Consider using a software based loadbalacer for the webserver.(e.g. Resonate, Stonebeat Cluster, Veritas Cluster or linux-ha.org, www.linuxvirtualserver.org )Without SLB there is no way for automatic failover with IOS.regards Michel
Hi David,You should have a look a the IOS SLB (Server Load Balancing) feature.Unfortunately SLB is not available for the 2600 Plattform. It is available for cat6000 and 7200.regards MichelLink:Configuring IOS Server Load Balancing with HTTP Probes in...
