client connection problem

Unanswered Question
Mar 9th, 2006
User Badges:

I have a VPN set up in office.

Clients are able to connect from remote site (behind another PIX;using private ip addres), but unable to ping or connect to any devices.


client's statistics shows

Encrypted Packets >0

Decrypted Packets =0;

seems like not receiving any vpn packets.


After i configure NAT (on pix) using public to private IP address, the problem was resolved.

like to seek advise on what to do, in order to allow clients w/o additional configuration on other PIXs.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
mpalardy Fri, 03/10/2006 - 06:27
User Badges:
  • Bronze, 100 points or more

Doing nat is the right thing to do. Do you also encrypt the interesting traffic?

morgsizun Mon, 03/20/2006 - 05:06
User Badges:

Hi,


do you see discarded packets in your client's stats?

In this case , il might be a problem with your default gateway.

When the tunnel is up , the default gw must be your VPN Adapater IP adress . Sometimes the default gw stays your lan connection's gw .

A solution is to force your lan connection's metric to 2 to force your VPN Adapter to become your gw.


Morgan Sizun


Actions

This Discussion