03-21-2007 09:29 AM - edited 02-21-2020 02:56 PM
I have a husband wife combo that is trying to connect to our office 515PIX using VPN client 4.8 and only 1 can be connected at a time. 1 user is connected and when the other one connects the other user gets disconnected. Is the problem their home d-link router or a setting on the pix that will only allow 1 NAT'ed address? I have also tried a Zyxel router and the same thing happens. Any suggestions?
03-21-2007 09:34 AM
On the PIX firewall do you have NAT-T enabled.
The command would be
isakmp nat-traversal [natkeepalive]
Eg:
isakmp nat-traversal 20
If it is not enabled, try to enable that and see if it fixes the problem.
Make sure they have IPSEc over UDP option enabled on the VPN client in the Transparent tunneling tab.
Let me know, if that helps.
Cheers
Gilbert
03-21-2007 11:05 AM
Thanks, that worked! What difference does changing the number from 20 to 10-3600 do?
03-21-2007 11:33 AM
Glad to know that it worked.
Its a keepalive interval. Every so many seconds - a keepalive is sent.
Rate this post if it helped.
Thanks
Gilbert
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: