Cisco PIX Firewall Version 6.3(1) supports "fixup protocol esp-ike" Enables PAT for Encapsulating Security Payload (ESP), single tunnel.
Cisco VPN Client - Version 4.0.1 supports: IPSec over UDP for NAT and PAT - or - PSec over TCP for NAT and PAT
Using these versions of software, it seems I'm able to establish to a tunnel with a remote PIX 515E VPN server running FOS V 6.3. Running "show crypto isakmp sa", and "show crypto ipsec sa", on the remote VPN server, shows the sa(s) are being created. The VPN Client Tunnel Details panel is showing a tunnel being created and a client address being assigned on the remote VPN server.
Traffic sent through the VPN tunnel is received by the remote VPN server only when "fixup protocol esp-ike" is active. Unfortunately, traffic is not being returned.
Is my remote VPN server configuration defective or is using Cisco VPN Client software with PIX PAT impossible?
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...