01-04-2012 04:16 AM - edited 02-21-2020 05:48 PM
Hello ,
I am looking for a sample config for IPsec over tcp (port 1000) for cisco 12.4 ios (2610xm)
regards,
Andrew
Solved! Go to Solution.
01-05-2012 02:46 AM
I dont have cisco link for that but its global command just mentioned the port and allow your outside ACL for port tcp 10000.Once done change the transport setting in your VPN client for TCP port 10000.
Thanks
Ajay
01-04-2012 10:09 AM
you need configure "crypto ctcp port 1000" on router and on the Vpn client side, enable ipsec over tcp for the specific port as well.
01-05-2012 01:32 AM
I am using advance enterprise ios and that command doesn't exist. Shall i upgrade to security ios?
01-05-2012 02:38 AM
Hello Ajay,
I upgrade the router to the version 12.4(9) and now i can use the command "crypto ctcp port 10000". Do you have any documentation how to enable ipsec over tcp?
Thanks
Andrew
01-05-2012 02:46 AM
I dont have cisco link for that but its global command just mentioned the port and allow your outside ACL for port tcp 10000.Once done change the transport setting in your VPN client for TCP port 10000.
Thanks
Ajay
01-05-2012 03:33 AM
Hello Ajay,
After the upgrade and the command which you mention is working and i can connect with the mac book too (unfortunetely Apple prefers only IPsec over tcp)
Thanks
Andrew
01-05-2012 03:38 AM
So is it solved or something still left ?
01-05-2012 03:42 AM
Yes it is
One last question , do you know if i can assign the same ip to spesific vpn client?
01-05-2012 03:44 AM
Do you mean fixed IP for specific VPN user ?
01-05-2012 03:52 AM
Yes
01-05-2012 04:03 AM
I am sure we do it on ASA but IOS not 100 % sure if authentication id done by Radius then yes attributes can be set.
Might be other knows.
Thanks
Ajay
01-05-2012 04:30 AM
No worries,
Thanks for your help
Andrew
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide