I am working on project using a VPN 3002 in Network Extension Mode, and connecting to a 3030 over a semi-private ISDN dialup provided by a 1603R with DDR, and NAT.
The network connection is fine - I have full functionality from both sides of the tunnel. My problem is that although I have the idle timeout set to 2 minutes, when I have the 3002 set with group name / password and username / password, i.e. automatic connection, it keeps re-establishing the tunnel after each timeout. If I set it to interactive hardware login, it behaves as expected, dropping the connection after 2 minutes, and not bothering the 1603 again until you click the login button in the browser.
Seeing this configuration is for a satellite-connected remote station, and call costs are $6 / min, this situation is not good.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...