Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
577
Views
0
Helpful
1
Replies

3rd party VPN client within a VPN network

8dgoswick
Level 1
Level 1

‎06-20-2001 02:27 PM - edited ‎02-21-2020 11:21 AM

We are doing router to router VPN using the 2620. For Internet access, the users simply go out the same router using NAT.

We have an application that runs a VPN client on a workstation and connects using IPSec. This workstation sits behind the NAT router. The returning packets (UDP, port 500) are not making it back into the workstation. I imagine is has something to do with the router to router VPN setup. Is there any way to pass those packets back into the private network? This works just using NAT, but not when the VPN tunnels are set up.

Labels:
0 Helpful
1 Reply 1

smahbub
Level 6
Level 6

‎06-25-2001 12:40 PM

It should be dependant on the rules of your crypto-map access list or your firewall rules. Exclude that workstation from the crypto map and make sure the firewall isn’t discarding those return packets.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents