EAZY VPN CLIENTS connected, but there is one way traffic
Before all, thanks for the help... There is the issue, the client can establish a tunnel with the PIX acting as the VPN server. However, the client can't access any resources in the inside network(Exempted by NAT and ACL). I have doubles check(enable) all the items below so far, is there something else i should try that isn't in the list below?
NAT is exempt is in placed the outbound interface ACL in the outbound interface to permit traffic exempted by NAT Inbound interface is still in default state(any ---> any less secure networs permt, and any ---> any deny) RRI is enable
Same security traffic permit(intra interface)
Should I add a route on the FW to point the pool for the remote vpn user?? NO split tunnel enable. VPN client shows statistics sent/Encrypt packet, but NO Receive/Decrypt packet(Seems GW doesn't send traffic back to the client ) NAT-T is enable in the policy in the PIX, but not on the vpn client software
When ping an inside host from the eazy vpn client, i got request timeout, but the FW log shows packet get through just fine...
Packet capture in the egress interface of the FW sees traffic from remote vpn client going to inside host... but host keep getting request timeout.
Radius server configuration for 802.1XServer radius test1Address ipv4 10.1.1.1Key 1234!Server radius test2Address ipv4 10.1.1.2Key 1234!aaa group server radius TEST-grserver name test1server name test2!aaa authentication dot1x default group TEST-graaa aut...
One of the biggest concept in VPN Technologies is NAT Traversal, like NAT Traversal in VOIP deployment with SIP Protocol, the history is always inside the payload to solve the Incompatibility between NAT and IPSEC like the Incompatibility between SIP prot...
"What is this 'Orbital Query Corner' thing", you ask? It's the name of an occasional series of articles, each discussing one particular point or use case for the Orbital advanced search feature that is available in Cisco Secure Endpoint starting at ...
0. The Issue
On 20 July 2021, Microsoft issued an alert for CVE-2021-36934 "Windows Elevation of Privilege Vulnerability".  The problem in this case is an overly permissive Access Control List (ACL) applied to system files, including the Se...