cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
484
Views
0
Helpful
2
Replies

No packets through a Successful VPN connection

c-jardine
Level 1
Level 1

I have a Pix 515 (6.0) and I have a VPN client 3000 loaded on a windows 2000 box. I can establish a VPN connection but I can't pass any packets! or access anything on the inside network. What might I look at?

2 Replies 2

bin_qxie
Level 1
Level 1

Check you route set up on your 3000 box.

BinXie

rjphillips
Level 1
Level 1

Also had the same problem with the same set-up. VPN connected fine, but couldn't connect to internal services.I Found that the only way to get this working was to add "sysopt ipsec pl-compatible" command.

Cisco's view on the command is this

"Note: The PIX Firewall currently only supports IPSec on the outside interface. Although the PIX Firewall currently can simulate the Private Link inside termination with the use of the sysopt ipsec pl-compatible command, the termination on the inside interface is not a true termination. For more information on the sysopt ipsec pl-compatible command, see the sysopt command page."

The only other way I found (without using the above command) is to use Network statics or static translations to the devices you need to see on the inside network.

Hope this helps