Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
249
Views
0
Helpful
1
Replies

Cant VPN from Behind PIX

jcleary
Level 1
Level 1

‎02-18-2005 01:58 PM - edited ‎02-21-2020 01:37 PM

I jsut installed a new PIX 506 w/ Ver 6.3.4 and now i cant get to any of my clients VPN's I have several clients that use a PIX as a Client to Site VPN Endpoint and some use a 3005 now i cant connect to them. some let me authenticate but i cant pass any traffic. this all worked when i had a linksys router.

Any ideas??

Labels:
0 Helpful
1 Reply 1

Patrick Iseli
Level 7
Level 7

‎02-18-2005 02:38 PM

If you have VPN Port Address Translation configured then you can just have 1 VPN Tunnel in the same time configured.

If you want to have more VPN Tunnels in the same time then you have to NAT this IPs.

See this post:http://forum.cisco.com/eforum/servlet/NetProf?page=netprof&CommCmd=MB%3Fcmd%3Ddisplay_location%26location%3D.1dd76646

search for my CCO in Post to find the answer from cisco.

The second problem is that the Peer VPN Device need to support Transparent NAT to send the ESP packets trough PAT UDP Port 4500. Also mentioned in the above post.

Have you enabled the " sysopt connection permit-ipsec" To enable globaly IPSEC if you have not opened ESP and IPSEC on the outside access-list.

Hope this helps

Patrick

0 Helpful
Customers Also Viewed These Support Documents