VPN Client wont connect when behind another PIX Unit.

Unanswered Question
Feb 10th, 2007

I'm running a PIX-506E at my home and another one at a business. I have remote VPN setup through the remote PIX so I can connect to it from my Sprint card and the VPN software. The problem is my PIX wont let the session connect to any of the PC's on the other end. It will secure the channel, encrypt and connect, but wont let me access anything.

Is there something I'm missing here? Although I don't really know how to forward ports with the PIX software I just bought it... so maybe this would be a good time to learn.

Thank you!!

Mike Jankowski

Computer Systems Consultant

[email protected]

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
jcrussell Sat, 02/10/2007 - 15:27

I think you need to define which address(es) and port(s) you want to allow to connect.

Kamal Malhotra Sat, 02/10/2007 - 23:31

Hi Mike,

Please make sure that you have NAT-T enabled on the heaend PIX and the client and the UDP port 4500 is allowed through your home PIX. This should resolve the problem. Please be informed that it would be applicable for the new VPN connection that you launch. Check out the following link :

http://www.cisco.com/en/US/customer/products/sw/iosswrel/ps1839/products_feature_guide09186a0080110bca.html

HTH,

Regards,

Kamal

m-jankowski Wed, 02/14/2007 - 13:07

I tried this as well but it still wont let me access any PC's at the home site. Could you please explain NAT-T and how to correctly forward port 4500? Also I cannot access that link with my current US/PW ??

Actions

This Discussion