problem with IPSEC through zyxel 650R-31 to PIX 506
I have a setup with a Zyxel 650R-31 connected to an ADSL coonection. behind the Zyxel I have a Cisco PIX 506E connected. I have setup the zyxel to forward all ports to the PIX IP. The port forwarding works fine (WWW, FTP, SMTP and so on). PPTP to the PIX also works fine, but when i use Cisco VPN client (IPSEC) to make the connection, something goes wrong. I can see that the user gets correctly authenticated in the system log on the RADIUS server. What happens is that the VPN client "hangs" at "Securing communications channel" and then gives the error message: "Secure VPN connection terminated locally by the client. Reason 412: The remote peer is no longer responding".
What could be the problem ???
Here is some of the config output og the PIX:
fixup protocol dns maximum-length 512
fixup protocol ftp 21
fixup protocol h323 h225 1720
fixup protocol h323 ras 1718-1719
fixup protocol http 80
fixup protocol rsh 514
fixup protocol rtsp 554
fixup protocol sip 5060
fixup protocol sip udp 5060
fixup protocol skinny 2000
no fixup protocol smtp 25
fixup protocol sqlnet 1521
fixup protocol tftp 69
access-list outside permit tcp any host 10.0.0.2 eq smtp
access-list 101 permit ip 192.168.3.0 255.255.255.0 192.168.99.0 255.255.255.0
DocumentationCode download linksGoalRequirementLimitationsSupported ISR
and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity
options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in
HA DocumentationCode download linksGoalRequirementLimitationsSupported
ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and
UCS-E Blades:Step by Step ConfigurationCo...
Question I am currently unable to specify "crypto keyring" command when
configuring VPN connection on my cisco 2901 router. The following
licenses have been activated on my router :