12-03-2003 12:16 PM
Hi
I have this weird problem, I'm using cisco VPN client 4.03 and PIX515 running on 6.33 code.
I have no problem creating a vpn tunnel to the pix, but all i could do is PING, no TCP packet returning.
here is my config
access-list split permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0
access-list nonat permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0
vpngroup RemoteClient address-pool VPNPOOL
vpngroup RemoteClient dns-server 172.19.10.1
vpngroup RemoteClient default-domain test.com
vpngroup RemoteClient split-tunnel split
vpngroup RemoteClient idle-time 1800
vpngroup RemoteClient password ********
if anyone has this kind of situation before, pls let me know.
12-09-2003 12:56 PM
My suggestion would be to check your access lists.
12-09-2003 02:38 PM
Your acl's are for the same netblock, and are probably wrong. Post your whole config minus password lines
12-10-2003 08:49 PM
access-list split permit ip
access-list nonat permit ip
also please make sure the below command is in place:
sysopt connection permit-ipsec
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide