Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

PIX VPN problem

I have configured a basic VPN on our corporate PIX and am using VPN Client 3.6 to connect. This works perfectly until I try and connect more than one client. Config to follow - any ideas?.......

access-list vpn-no-nat permit ip x.x.x.0 x.x.x.0

nat (inside) 0 access-list vpn-no-nat

ip local pool ippool x.x.x.1-

aaa-server partnerauth protocol tacacs+

aaa-server partnerauth (inside) host x.xx.18.10 ************** timeout 10

sysopt connection permit-ipsec

crypto ipsec transform-set myset esp-des esp-md5-hmac

crypto dynamic-map dynmap 10 set transform-set myset

crypto map mymap 10 ipsec-isakmp dynamic dynmap

crypto map mymap client authentication partnerauth

crypto map mymap interface outside

isakmp enable outside

isakmp identity address

isakmp policy 10 authentication pre-share

isakmp policy 10 encryption des

isakmp policy 10 hash md5

isakmp policy 10 group 2

isakmp policy 10 lifetime 86400

vpngroup itsnetworksvpn address-pool ippool

vpngroup itsnetworksvpn dns-server x.x.3.1

vpngroup itsnetworksvpn wins-server x.x.203.2

vpngroup itsnetworksvpn idle-time 1800

vpngroup itsnetworksvpn password ********************

  • Other Security Subjects
Cisco Employee

Re: PIX VPN problem

What happens when you connect more than one client?

Are these two clients behind the one router doing NAT/PAT? If so it's probably that the NAT/PAT device isn't NAT/PAT'ing the IPSec traffic properly. If the first one disconnects when the second one tries to connect then this is more than likely the problem, nothing to do with the PIX.

Try connecting from two different locations and see if that works.

This widget could not be displayed.