problem browsing using vpn client

noctorno · ‎06-10-2004

i have cisco VPN client connecting VPN concentrator through firewall (using TCP 10000)

the PC inside VPN client LAN have problems when browsing to certain web sites. i.e

microsoft (windowsupdate)

im not sure, but it seems that it only allow one connection to these website.

below is the log. please advise

411 06/09/2004 13:36:34.850 SEV=4 IP/57 RPT=54

Packet from 10.48.16.87/0, to 216.239.115.131/0, should be handled by existing session!

628 06/09/2004 19:28:23.490 SEV=4 IP/57 RPT=140

Packet from 10.48.16.85/0, to 211.39.137.157/0, should be handled by existing session!

jmia · ‎06-10-2004

Can you post your configuration please, take out any sensitive information.

Thanks

Jay

noctorno · ‎06-10-2004

the VPN client site is using ADSL connection

|client|--|INTERNET|--|firewall|--|concentrator|

Im not sure which configuration do you want. its all web-base. thank you

jmia · ‎06-10-2004

Are you seeing the error message on the Firewall or Concentrator? Post your Firewall configuration.

Jay

noctorno · ‎06-10-2004

i see the message on the Concentrator.

for firewall, i allow TCP port 10000

noctorno · ‎06-10-2004

sorry. the message is at VPN hardware client. tq

jmia · ‎06-11-2004

Have you got split-tunnel enabled on your firewall for your crypto ACL? If not then enable this and let me know what happens.

Jay

satish77 · ‎06-13-2004

This issue is caused by the MTU setting please adjust the MTU setting to 1452 on your VPN client and should defrag the packets correctly and will be able to browse all the websites