I have a weird problem that began after I upgraded a PIX 515 failover pair from 7.2(2) to 8.0(3). Everything seems to work OK, except remote management via VPN-client.
I've tried telnet and https but once the management connection is established there is no data received from the firewall, hence login is not possibleâ¦ I used Wireshark to verify that a connection is established but after the 3-way handshake, there is nothing except a TCP packet that seems to be out of sequence.
I can manage the firewall using a PC on the inside network but that is a somewhat troublesome workaround.
VPN-client IP: 192.168.150.0/26
Firewall inside IP: 172.31.2.254
Some lines from the configuration:
access-list nonat extended permit ip 172.31.2.0 255.255.255.0 192.168.150.0 255.255.255.0
nat (inside) 0 access-list nonat
sysopt connection permit-vpn
telnet 192.168.150.0 255.255.255.192 inside
route outside 192.168.150.0 255.255.255.192 x.x.x.x