Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAT TRAVERSAL ON PIX

I have this prb:

Pix 506 with 6.3.3

Vpn client 4.0.1

I have the VPN client behin a NAT/PAT device whith udp encapsulation enabled.

On pix 506 I have configured the

isakmp NAT_traversal.

In the outside interace of pix i see the isakmp packet whith dest port 500 (not 4500)

and the phase 1 not start

Can anyone help me?

1 REPLY
Silver

Re: NAT TRAVERSAL ON PIX

After you added the isakmp nat-traversal command, did you re-enter isakmp enable outside to reinitialize the isakmp configuration? If not, try that.

That said, I think you will always see the first isakmp packet(s) go to 500, but as things get negiotatied (included nat-traversal), traffic will eventually use the 4500 port

154
Views
0
Helpful
1
Replies
CreatePlease login to create content