Initiating VPN client connection from inside PIX to a remote VPN Gateway
I am facing problem when initiating the vpn client connection from inside network of the pix firewall to a remote location having VPN Gateway.PIX 501 is used between the internet router and the local LAN and the internet access is enabled for the local users by enavling dynamic NAT (PAT) in pix firewall.
Is there any issuses between VPN traffic and PAT or any specific traffic has to be enabled for the specific PAT public ip address.Please clarify on this issue.
Re: Initiating VPN client connection from inside PIX to a remote
If you are trying to initiate a VPN connection from inside the firewall you will need to open some inbound ports.
Depending on the VPN server/client being used you will need to open either gre (for pptp), or udp port 500 (isakmp), as well as a port assigned on the server like udp 10000. Some will require esp and/or ahp.
The easiest way to tell which ports you need open, if you don't have access to the server or it's configuration, is to check your syslog and see what's getting dropped when you try to make a connection.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...