We're using A PIX 515 v6.0.x as the security gateway.
From the remote locations we're using D-Ling 713P Gateway/WAPs. When we try to connect back to the PIX from clients running Win2k Cisco VPN client 3.5, everything is fine. The problem arises when we launch a second client. The second client is authenticating right away (without being challenged) and the sessions are eratic then. It almost seems like the second client is piggybacking off of the first client session.
My thoughts are this:
1. The Dlink is not handling mulitple IPSec sessions correctly. Are there any brands out there that do this correctly?
2. It seems that "Use IPSec over TCP" option on the clients should fix things, but I can't for the life of me figure out how to enbale that on the PIX itself.
Re: Multiple client connections behind NAT/PAT firewall possible
The PIX doesnt support IPSEC over TCP (or NAT Transparency mode like the VPN concentrators). I am surprised the 2nd session isnt dropping the 1st though If you are sharing a single IP address at the remote site. Does DLINK support IPSEC on the box (without the Cisco VPN client?) That might be a workaround for you.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...