Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
287
Views
5
Helpful
1
Replies

Terminating IPSec-over-TCP or IPSec-over-UDP on PIX

Go to solution
reinke
Level 1
Level 1

‎11-14-2003 05:18 AM - edited ‎02-21-2020 12:52 PM

Cisco VPN Client are terminated on a PIX firewall (not concentrator)outside interface. Some users are working behind a nat/pat device. Therefore, we must provide NAT transparency via UDP or TCP. The PIX firewall must be prepared to terminate those sessions. Does anybody know how?

Thanks

Edgar

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
artherrera
Level 1
Level 1

‎11-14-2003 07:11 AM

hi Edgar,

Yes, the feature has been added to 6.3. We use Nat traversal for PIX (UDP 4500), version of the Cisco VPN client that supports this type of nat-t are 3.6 and later. THe following are url with info on both:

PIX

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/63rnotes/pixrn63.htm#65230

VPN client

http://www.cisco.com/univercd/cc/td/doc/product/vpn/client/3_6/365clnt.htm#1175427

Regards,

Arthur

View solution in original post

1 Reply 1

Go to solution
artherrera
Level 1
Level 1

‎11-14-2003 07:11 AM

hi Edgar,

Yes, the feature has been added to 6.3. We use Nat traversal for PIX (UDP 4500), version of the Cisco VPN client that supports this type of nat-t are 3.6 and later. THe following are url with info on both:

PIX

http://www.cisco.com/univercd/cc/td/doc/product/iaabu/pix/pix_sw/v_63/63rnotes/pixrn63.htm#65230

VPN client

http://www.cisco.com/univercd/cc/td/doc/product/vpn/client/3_6/365clnt.htm#1175427

Regards,

Arthur

Customers Also Viewed These Support Documents