01-10-2002 07:47 AM - edited 02-21-2020 11:33 AM
I have a VPN through a PIX and RADIUS server. I have users that travel all accross the country and would like to use high speed internet access to connect to the VPN. I am finding that not all hotels will allow Cisco IPSEC traffic. Will using the VPN client and a Cisco VPN concentrator fix this problem?
01-10-2002 04:28 PM
The IPSEC over TCP in Software v3.5 will be a good answer for you.
02-15-2002 08:41 AM
Can you tell me a little bit about your VPN / PIX design. I am in similar situation with PIX 525 & VPN Concentrator 3015. Any ideas on how to place VPN in relation to PIX will be appreciated.
Thanks for your time.
03-06-2002 07:43 AM
I'm in the same situation. Did you finally decide on what design to implement? Want the most secure without losing too much of performance.
Any feedback will be very helpful.
Thanks.
02-15-2002 12:47 PM
What do you mean with not all hotels will allow Cisco Ipsec traffic?
02-20-2002 06:32 AM
lots of hotels (i.e. the fairmont chain) that offer
high speed in the rooms, don't allow ipsec protocols outbound on the firewall (udp, 500) protocols, 50 &51
esp and ah
so you have to "fool" their firewall by running ipsec over tcp (otherwise you wont get out)
02-20-2002 06:54 AM
Ok, that's right. Using the vpn3000 and cisco client 3.5 you can do that.
03-27-2002 10:06 PM
Does anyone know if a PIX-515R supports transparent IPSec tunnelling over TCP/UDP?
I assume if it is not already available it is on the way in the next version of the PIX OS.
03-28-2002 04:54 AM
Only the VPN Conecntrator can do this. Cisco TAC told me there are no plans to put this in the PIX.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide