Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
212
Views
0
Helpful
1
Replies

Pix to Pix Ras VPN

phlitservices
Level 1
Level 1

‎03-30-2006 09:18 AM - edited ‎02-21-2020 02:20 PM

Hi all,

I’m trying to connect to a remote site that is protected by a PIX 501 using the cisco vpn client. I can connect to the remote site if I go through a dialup or any other dsl connection, however, I cannot connect from our main office which is also protected by a PIX 506e. The PIX 506e is also configured for RAS VPN.

Cisco VPN Client (v4.x)--->PIX506--->Internet--->Destination PIX501--->Local

When I view the syslog from the pix 506e which is protecting my connection, I’m getting the following message “%PIX-3-305006: portmap translation creation failed for protocol 50 src inside 172.16.1.132 dst outside:66.6.x.x”

Any assistance is appreciated

Labels:
0 Helpful
1 Reply 1

m.sir
Level 7
Level 7

‎03-30-2006 09:50 AM

On 506 try

fixup protocol esp

(maybe you will need disable isakmp on interface than fixup and than enable isakmp on interface again)

On 501 could be helpful

isakmp nat-traversal

M.

Hope that helps , rate if it does

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents