cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
6704
Views
0
Helpful
2
Replies

Duplicate First Packet Detected - VPN 3005

e0jrodriguez
Level 1
Level 1

We got some problems to connect a remote partner office to our head quarters office using an ADSL link, with just 1 IP public address. The remote office does not have any VPN equipment, so we are using just Cisco VPN clients on W2K and W98.

Everything works for the first client, it connects and works fine. The problem is that the other equipments use the same IP address to Internet, so I think the VPN 3005 replies the session request to the PC that it is alredy connected and the second PC waits for an answer until it timeouts.

Any ideas? Is it necesary to get a VPN equipment on the other side and make LAN to LAN VPN?

Thanks in advanced,

Juan Diego

1 Accepted Solution

Accepted Solutions

gfullage
Cisco Employee
Cisco Employee

The VPN client and concentrator have a feature in them called NAT-T, where they will detect they're going through a NAT device and automatically encapsulate everything in UDP port 4500 packets, which should then be PAT'd properly.

Check this is turned on in the Properties of the clients, and on the concentrator under Config - System - Tunnelling Prots - IPSec - Nat Transparency, you should be right after that.

View solution in original post

2 Replies 2

gfullage
Cisco Employee
Cisco Employee

The VPN client and concentrator have a feature in them called NAT-T, where they will detect they're going through a NAT device and automatically encapsulate everything in UDP port 4500 packets, which should then be PAT'd properly.

Check this is turned on in the Properties of the clients, and on the concentrator under Config - System - Tunnelling Prots - IPSec - Nat Transparency, you should be right after that.

It worked.

Thanks

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: