a server vpn behind a cisco router

Unanswered Question
Mar 3rd, 2007

Hello. I have a problem. I have a ms vpn l2tp/ipsec server behind a router cisco. The router cisco have a public ip and it nat 3 vpn port of vpn l2tp/ipsec to vpn server ( udp 500,1701 & 4500). But it doesnt conect. If i try the vpn server with a clinet in the same lan it conect, but with the other client outside lan dont conect. I suppose that i would add any command that i unknown. I had nat with the next command :

ip nat inside source static udp inside port outside port. Someboy knows if i am doing somthing incorrect

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Danilo Dy Sat, 03/03/2007 - 23:19

Check the router logs which other port failed to connect and add them in router NAT

kike.alvarez Mon, 03/05/2007 - 00:06

thank you. I made a better thing, i add in the roter ip nat inside source static inside outside for rerouter all trafic to the vpn server. But it continues failed

Kamal Malhotra Mon, 03/05/2007 - 07:14


What about the access-groups on the interfaces? Do we have any? If yes, try removing those for testing and if it works then we'll need to allow the traffic on those specific ports like 500, 1701, 4500 etc. And what kinda logs do we get when we try to connect?



kike.alvarez Mon, 03/05/2007 - 07:21


I don't have any filter in this interface. As for the log, i don`t know how to get it. i suppose that i will have to configure a syslog server. Is it this way?


This Discussion