First I would like to thank to all forum members that help me in several posts about pix 515 configuration.
I am trying to configure now a Remote access VPN with radius authentication to my corporate network, but I can't connect.
I am using cisco vpn client 5.0.03.0560., I also tested my radius server authentication from pix (inside) and is working fine.
I already tried to retype the key from cli,but i still can't get the remote access vpn to work.
I also tried to create another remote vpn with another name and local authentication but i get the same problem.
I am using pix version 8.0(3).
Can anyone help-me
I attach the log file from cisco vpn cliente to help troubleshoot the problem, as well a configuration file from pix.
Thank you so much in advance and I will be looking forward for the information.
Solved! Go to Solution.
try to add
crypto isakmp policy 5
crypto isakmp nat-traversal
clear crypto isakmp sa
clear crypto ipsec sa
and try again
and show the output
deb crypto isakmp 255
did you get username and password prompt on the client?
could you test the authentication
test aaa-server authentication my_authent_grp username XXX password XXX
i tested aaa-server authetication from inside, and it works.
but when i use cisco vpn cliente to access to my corporate network the cliente dosen't ask the username and password for the aaa-server.
Its working, as soon as i put the PIX Firewall Activation Key for 3des (my mistake), and change the connection to 3des as you posted (a.alekseev) the vpn start working .
The only problem i have is the following to be able to connect to my corporate network i have to use any ip address scope, if i trie to use my internel dhcp server e can't get an ip address to the vpn cliente.