cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
279
Views
5
Helpful
3
Replies

2 VPN client users connecting from home to company PIX only 1 can connect

dhargrave
Level 1
Level 1

I have a husband wife combo that is trying to connect to our office 515PIX using VPN client 4.8 and only 1 can be connected at a time. 1 user is connected and when the other one connects the other user gets disconnected. Is the problem their home d-link router or a setting on the pix that will only allow 1 NAT'ed address? I have also tried a Zyxel router and the same thing happens. Any suggestions?

3 Replies 3

ggilbert
Cisco Employee
Cisco Employee

On the PIX firewall do you have NAT-T enabled.

The command would be

isakmp nat-traversal [natkeepalive]

Eg:

isakmp nat-traversal 20

If it is not enabled, try to enable that and see if it fixes the problem.

Make sure they have IPSEc over UDP option enabled on the VPN client in the Transparent tunneling tab.

Let me know, if that helps.

Cheers

Gilbert

Thanks, that worked! What difference does changing the number from 20 to 10-3600 do?

Glad to know that it worked.

Its a keepalive interval. Every so many seconds - a keepalive is sent.

Rate this post if it helped.

Thanks

Gilbert

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: