Intraport client dropping connection behind Linux firewall
My Windows 2000 laptop has the Cisco Intraport 5000 V5.2.3 client loaded to connect to a corporate VPN. If the laptop is connected directly to an internet connection, everything works fine; but if the laptop is connected behind a Linux firewall computer, the VPN connection predictably fails after about 30 minutes (the time varies a good bit), and the only way to restore the connection is to reboot the laptop. The Linux firewall has IPSEC support loaded. Trying different laptops, of various makes and models, produces the same results. The connection log of the client simply shows "connection aborted". Internet access through non-vpn routes works without a problem. I suspect that either the DHCP / Proxy server at the corporate end is terminating the VPN connection, or the client software drops the VPN connection, perhaps because some kind of "status query" packets are not being answered, but that is only a guess, and I really do not know what the problem might be. Corporate support tells me to get rid of the Linux firewall and to make a direct connection, but that is not an option. Note that the Linux firewall does not support the NAT option. Can anyone familiar with the Cisco 5000 setup help me?
Here is a client debug log that shows the connection lost after about 30 minutes with rc = 232 (I assume that is an error/status code but have been unable to find out what it means).
(note: username, server and ip edited for security.)
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :