Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
278
Views
0
Helpful
2
Replies

Checkpoint VPN client behind 1800 running CBAC

rasoftware
Level 1
Level 1

‎02-24-2006 08:04 AM - edited ‎02-21-2020 02:16 PM

Anyone got problems running R56 Securemote client behind an IOS router running CBAC firefall features?

I have a client running unreliable behind it.

Labels:
0 Helpful
2 Replies 2

r-simpson
Level 3
Level 3

‎03-02-2006 07:42 AM

What CBAC features have you enabled on the IOS router? What kind of problems do you encounter?

0 Helpful

rasoftware
Level 1
Level 1
In response to r-simpson

‎03-06-2006 01:19 AM

It appear the client R56 remain "up" but data stops flowing. I have CBACB on inside interface "in" with TCP, UDP, ISAKMP and most INSPECTs set.

I have found interestingly that this client uses a fixed source port and also 2746 for UDP encap and not NAT-T standard 4500 UDP.

I have run a later client R60 over a PIX and it works well.

Cisco tell me the fixed source port used to cause problems in their client and they changed it. I also wonder why Checkpoint have changed the encapsulation UDP port to 4500???

0 Helpful
Customers Also Viewed These Support Documents