[VPN] Cisco IPSec VPN client through NAT/PAT
shannong
shannong at texas.net
Sat Oct 19 12:40:55 EDT 2002
I have looked there before, and there is no cure as far as I know. The
fix is to use IPSec over UDP or TCP, but the Pix does not yet have these
features. You'll have to use a VPN concentrator to use those features.
I'm very dissappointed in cisco for not providing this capability on the
pix. The Pix "supports" the Unity 3.x client but only in a very limited
fashion with little functionality.
-----Original Message-----
From: vpn-admin at lists.shmoo.com [mailto:vpn-admin at lists.shmoo.com] On
Behalf Of Brian Wotring
Sent: Saturday, October 19, 2002 9:33 AM
To: Jerry Kemp
Cc: vpn at lists.shmoo.com
Subject: Re: [VPN] Cisco IPSec VPN client through NAT/PAT
Have you looked at this yet:
<http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_62/
config/index.htm>
On Monday, October 14, 2002, at 10:08 AM, Jerry Kemp wrote:
> I picked up a Cisco PIX 501 to play with as a learning tool for VPN
> stuff. Currently, I have it up and operational using the Cisco 3.6.x
> easyVPN client using public ip (client ip) to Cisco PIX (public ip).
> The PIX is running 6.2(2). Also, I do not have the 3des license, only
> des.
>
> When the Cisco VPN client is coming from behind a NAT/PAT source, I
> can connect to the PIX (still public ip), but no traffic ever makes it
> back to me. I have determined this via the stats in the VPN client.
>
> Can anyone point me to URL where I can RTFM on Cisco PIX VPN's and
> NAT/PAT? I have spent more time than I care to admin on CCO searching
> for something like this.
>
> Thanks,
>
> Jerry
>
> _______________________________________________
> VPN mailing list
> VPN at lists.shmoo.com http://lists.shmoo.com/mailman/listinfo/vpn
>
>
--
Brian Wotring ( brian at shmoo.com )
PGP KeyID: 0x9674763D
_______________________________________________
VPN mailing list
VPN at lists.shmoo.com
http://lists.shmoo.com/mailman/listinfo/vpn
More information about the VPN
mailing list