I am having an issue with a Cisco 3000 VPN server. Multiple clients at one location need to connect back to the VPN server via PPTP. The location is served by a DSL line with a basic NAT router. The first client is able to connect and the rest are rejected. I am assuming this is a "security feature" of the 3000 box. My guess is that the 3000 likes an individual IP address for each session. Has anyone seen this problem?
Why is it so that PPTP is not supported thru PAT. I understand that ipsec is not supported coz of esp not using ports...but how the same applies to pptp as it uses pptp for tunneling and mppe for encryption
The VPN 3000 series will only allow a single connection from a particular IP address. Snapgear makes a $300 router that will build the PPTP connection to the Cisco 3000 box and then multiple clients can go through that tunnel. The individual client machines do not create a tunnel or authenticate in this scenario. It's a nailed-up point-to-point connection connecting two lans. I have one engineer using this from home quite successfully.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...