VPN client drop

Answered Question
Nov 24th, 2006
User Badges:

I've set up a PIX to be used with the Cisco VPN client. Everything works fine. However, if I try connecting to the PIX with a second computer at the same remote site, it knocks off the first connection. Is it possible to connect multiple users to a pix from the same site using the VPN client? If so, how?

Correct Answer by ggilbert about 10 years 8 months ago

PIX Firewall Version 6.3 provides a feature called "Nat Traversal". NAT Traversal allows ESP packets to pass through one or more NAT devices. This feature is disabled by default.



To enable NAT traversal, enter the following command:


isakmp nat-traversal [natkeepalive]



Valid values for nat keepalive are 10 to 3600 seconds - the default is 20 seconds.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
ggilbert Sat, 11/25/2006 - 13:01
User Badges:
  • Cisco Employee,

PIX Firewall Version 6.3 provides a feature called "Nat Traversal". NAT Traversal allows ESP packets to pass through one or more NAT devices. This feature is disabled by default.



To enable NAT traversal, enter the following command:


isakmp nat-traversal [natkeepalive]



Valid values for nat keepalive are 10 to 3600 seconds - the default is 20 seconds.

Actions

This Discussion