01-31-2007 12:36 PM - edited 02-21-2020 02:50 PM
Hi,
Here is my problem:
Employee A and employee B make VPN connections to the same PIX with their Cisco VPN clients. Both employees are behind the same NAT device, hence have the same public IP address.
As soon as the second employee initiates the VPN connection, the first employee is disconnected.
I have a similar situation with a PIX version 6.x, and this does not occur. Both employees can connect at the same time, with the same credentials.
Here's the remote access VPN configuration that I use:
group-policy gpolicy attributes
dhcp-network-scope 10.X.X.X
vpn-simultaneous-logins 5
vpn-tunnel-protocol IPSec
ipsec-udp enable
split-tunnel-policy tunnelspecified
split-tunnel-network-list value splitTunnelAcl
user-authentication enable
client-firewall none
username remoteuser password remotepass
username remoteuser attributes
vpn-group-policy labtronix
vpn-simultaneous-logins 2
vpn-tunnel-protocol IPSec
group-lock value vpngroup
tunnel-group vpngroup type ipsec-ra
tunnel-group vpngroup general-attributes
address-pool ip_pool
default-group-policy gpolicy
Any and all input is appreciated.
Thanks.
Solved! Go to Solution.
01-31-2007 01:23 PM
01-31-2007 01:23 PM
Most likely nat-t problem
add "isakmp nat-traversal" to pix
01-31-2007 01:55 PM
Absolutely right, don't know how I missed that.
Thanks.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide