Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
393
Views
0
Helpful
1
Replies

L2TP VPN through a PIX firewall

jms112080
Level 1
Level 1

‎06-05-2007 03:25 AM - edited ‎02-21-2020 03:05 PM

I have users that can't connect vpn when they are a behind a pix running PAT at another site. I see the traffic hit my ASA but the source port is always something other than 500, is it possible for it to work if the initial packet is not sourced from UDP 500?

NAT-T is enabled and works fine as long as the source port of the initial packet is UDP 500.

Labels:
0 Helpful
1 Reply 1

drolemc
Level 6
Level 6

‎06-11-2007 11:18 AM

I think it is not possible for tunnel to work if initial packet is not from UDP port 500. Following links may help you

http://www.cisco.com/en/US/docs/security/pix/pix62/configuration/guide/basclnt.html

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_tech_note09186a0080094e6d.shtml

0 Helpful
Customers Also Viewed These Support Documents