12-16-2004 11:30 AM - edited 02-21-2020 01:30 PM
I am trying to build a tunnel between a pix and a 3002 client. The tunnel won't come up and the error is in the attached file output.text My config is in run.txt, also attached. Your help as always is more than greatly appreciated.
Kelvin
12-19-2004 03:09 PM
The 3002 is a VPN client, and has to be configured as such on the PIX. Your current PIX config is for a LAN-to-LAN tunnel from the 3002, which is incorrect, and which is why the PIX is complaining about the packets it is receiving.
You need to configure the PIX for a VPN client connection as shown here:
http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a008009442e.shtml
Always remember that although the 3002 looks like a standard concentrator, it acts EXACTLY LIKE a VPN client installed on someone's PC, so the headend (the PIX) has to be configured to accept that.
12-21-2004 08:28 AM
Thanks, your answer was most helpful. The tunnel is now working. As a matter of fact, I am now able to bring up multiple tunnels to multiple interfaces and route between them. Thanks for all the help and this can be closed
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide