Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
567
Views
0
Helpful
2
Replies

Problem with ipsec-over-tcp

jaroslavremen4
Level 1
Level 1

‎03-27-2009 05:53 AM - edited ‎02-21-2020 04:11 PM

I have ASA5510 behind NAT-router,so outside interface has private IP. For VPN I am using ipsec-over-udp and ipsec-over-tcp. When I am connecting via ipsec-over-udp everything is working fine, but when I am connecting via ipsec-over-tcp connection is established but no traffic is going through. After few minutes idle time connection is dropped. Can somebody help me with this ?

Labels:
0 Helpful
2 Replies 2

nitinaga
Level 1
Level 1

‎03-27-2009 10:35 AM

Hi,

Please check if you have tcp port 10000 open at the perimeter router also check if crypto-ipsec-over-tcp 10000 is enabled at the remote end.

regards,

Nitin

0 Helpful

jaroslavremen4
Level 1
Level 1
In response to nitinaga

‎03-30-2009 12:56 AM

Yes . it is open. As I wrote conection is established, I see it in "show ipsec sa" output that I am connected , but no traffic is going through. ACLs is correct.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents