Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1031
Views
0
Helpful
3
Replies

Cisco VPN client to PIX515, UDP ok, not TCP

tkpsimon
Level 1
Level 1

‎12-03-2003 12:16 PM

Hi

I have this weird problem, I'm using cisco VPN client 4.03 and PIX515 running on 6.33 code.

I have no problem creating a vpn tunnel to the pix, but all i could do is PING, no TCP packet returning.

here is my config

access-list split permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0

access-list nonat permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0

vpngroup RemoteClient address-pool VPNPOOL

vpngroup RemoteClient dns-server 172.19.10.1

vpngroup RemoteClient default-domain test.com

vpngroup RemoteClient split-tunnel split

vpngroup RemoteClient idle-time 1800

vpngroup RemoteClient password ********

if anyone has this kind of situation before, pls let me know.

Labels:
0 Helpful
3 Replies 3

a-vazquez
Level 6
Level 6

‎12-09-2003 12:56 PM

My suggestion would be to check your access lists.

0 Helpful

mostiguy
Level 6
Level 6

‎12-09-2003 02:38 PM

Your acl's are for the same netblock, and are probably wrong. Post your whole config minus password lines

0 Helpful

jackko
Level 7
Level 7

‎12-10-2003 08:49 PM

access-list split permit ip

access-list nonat permit ip

also please make sure the below command is in place:

sysopt connection permit-ipsec

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents