VPN client connectin gets dropped with more than one connection to server
I have a PIX501 running vpn services. I have 2 computers sitting behind a NAT box on 192.168.0.1 network. 192.168.0.3(user-JOHN) and 192.168.0.4(user-MIKE).
John establishes vpn connection to server and as soon as MIKE connects, John gets "Your IPSec connection has been terminated by the remote peer". And, if MIKE connects first then John, mike has disconnected with the same warning.
Am I missing configuration on the pix501 to do multihosting?
I am using the same user account to login on both machine, does this make a difference?
Maybe the PIX501 can not be multihost! is this possible?
Re: VPN client connectin gets dropped with more than one connect
Have them use IPSec over TCP instead of UDP in the client config - this should solve the issue. This has something to do with the way UDP is handled being that it is connectionless. If they both pass through the same device (before the concentrator), one will be dropped.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...