Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Cisco VPN client to PIX515, UDP ok, not TCP

Hi

I have this weird problem, I'm using cisco VPN client 4.03 and PIX515 running on 6.33 code.

I have no problem creating a vpn tunnel to the pix, but all i could do is PING, no TCP packet returning.

here is my config

access-list split permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0

access-list nonat permit ip 172.19.0.0 255.255.0.0 172.19.0.0 255.255.0.0

vpngroup RemoteClient address-pool VPNPOOL

vpngroup RemoteClient dns-server 172.19.10.1

vpngroup RemoteClient default-domain test.com

vpngroup RemoteClient split-tunnel split

vpngroup RemoteClient idle-time 1800

vpngroup RemoteClient password ********

if anyone has this kind of situation before, pls let me know.

3 REPLIES
Silver

Re: Cisco VPN client to PIX515, UDP ok, not TCP

My suggestion would be to check your access lists.

Silver

Re: Cisco VPN client to PIX515, UDP ok, not TCP

Your acl's are for the same netblock, and are probably wrong. Post your whole config minus password lines

Gold

Re: Cisco VPN client to PIX515, UDP ok, not TCP

access-list split permit ip

access-list nonat permit ip

also please make sure the below command is in place:

sysopt connection permit-ipsec

358
Views
0
Helpful
3
Replies