Cisco VPN Client with etoken Aladdin

Unanswered Question
Jun 15th, 2007
User Badges:

My network is this

<<<>>>---wan---<<< ----->>>------pc with cisco VPN Client and IP

I want connect to Router over my router with VPN Client to net and permit only IPSec traffic . I have Etoken Aladdin with certificate on VPN Client

My router config is

ip dhcp excluded-address


ip dhcp pool LAN-pool

import all



lease 0 2

interface FastEthernet0

description $WAN$

ip address

duplex auto

speed auto

ip access-group Tunnel1 in

interface Vlan1

description $OFFICE-LAN$

ip address

ip tcp adjust-mss 1452

ip route

ip access-list extended Tunnel1

permit esp host host

permit udp host any eq isakmp

permit icmp any any

and no work with this access-list. When insert rout in access-list Tunnel1

permit udp host any it is OK

I think is for Etoken but I don?t know which UDP port use

Can you help me. Thank

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
vaba Mon, 06/18/2007 - 23:08
User Badges:

is anyone help me for this ?

shomar Tue, 06/19/2007 - 21:16
User Badges:

Hi vaba,

I think this is to permit ISAKMP nad NAT-T to pass, not etoken.

try opening udp 500 and udp 4500 on the access list and give it a try.

Kind regards,



This Discussion