Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Securemote and IOS firewall/CBAC/NAT

Does anyone have experience of SecuRemote R56 working fine behind a IOS router with CBAC running?

We have strange situation where I can see all necessary traffic for securemote client on the firewall:

UDP/500

UDP/2746

UDP/259

When it starts acting up I see many UDP/259 NAT sessions to various servers in the cluster. When checkpoint administrator says it look like the SA cant be renegoiated.

I tried changing UDP timeout and NAT. I went as far as adding another CBAC inbound (outside) and an any rule from the FW-1 server?

This apparently works fine when the cisco box is removed form the equation. IOS is ver 12.4 running adv IP services.

I'm at a total loss with this, sometime it works then just stops working - maybe when the SA can negotiate?

1 REPLY
Silver

Re: Securemote and IOS firewall/CBAC/NAT

Load balancing is used among servers in a cluster to optimize the performance of the system. a set of interactions between an end user and BBSM Hotspot. The session starts when BBSM Hotspot serves the start page. At this point, the session is inactive, which means that the user does not have access to the Internet. The session becomes active when BBSM Hotspot authorizes the user to access the Internet according to the access policy and accounting policy that are specified by the page set.

125
Views
0
Helpful
1
Replies