Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
333
Views
0
Helpful
1
Replies

Cisco VPN client and ACL

pdriscoll
Level 1
Level 1

‎10-12-2006 07:18 AM - edited ‎03-03-2019 02:19 PM

Hello. I am trying to set up a VPN connection between a Cisco VPN client and a Cisco 3640 using EZ VPN Server. I have a simple ACL on the inbound 3640 interface that reads:

permit udp any host x.x.x.x eq isakmp

permit esp any host x.x.x.x

permit udp any host x.x.x.x eq 4500

permit tcp any host x.x.x.x eq 10000

This is the only ACL on the 3640 interface.

When I configure the client to connect using Enable Transparent Tunneling -IPSec over UDP (NAT/PAT), I can connect the tunnel. When I select Enable Transparent Tunneling -IPSec over TCP - Port 10000, I cannot connect the tunnel.

Is the problem with the ACL or something else?

Thanks.

Labels:
0 Helpful
1 Reply 1

ajagadee
Cisco Employee
Cisco Employee

‎10-12-2006 08:50 AM

Patrick,

The problem most likely is not your ACL. Since you mentioned 3640, my guess is you are running 12.4T Code and the feature that you are looking for wasnt introduced until 12.4(9)T.

IPSec Over TCP feature on routers was introduced in 12.4(9)T. The command that you should be looking for is "crypto

ctcp port [port-number]".

Please refer the below URL for details:

http://www.cisco.com/en/US/partner/products/sw/iosswrel/ps1839/products_feature_guide09186a008055c37a.html#wp1305478

Let me know if it helps.

Regards,

Arul

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card