Problem with ipsec-over-tcp

Unanswered Question
Mar 27th, 2009

I have ASA5510 behind NAT-router,so outside interface has private IP. For VPN I am using ipsec-over-udp and ipsec-over-tcp. When I am connecting via ipsec-over-udp everything is working fine, but when I am connecting via ipsec-over-tcp connection is established but no traffic is going through. After few minutes idle time connection is dropped. Can somebody help me with this ?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
nitinaga Fri, 03/27/2009 - 10:35


Please check if you have tcp port 10000 open at the perimeter router also check if crypto-ipsec-over-tcp 10000 is enabled at the remote end.



jaroslavremen4 Mon, 03/30/2009 - 00:56

Yes . it is open. As I wrote conection is established, I see it in "show ipsec sa" output that I am connected , but no traffic is going through. ACLs is correct.


This Discussion