From: Ken Clifford (cliffy@lighthouse-networks.net)
Date: Thu May 15 2003 - 06:52:44 GMT-3
I've implemented this and thought the following may be helpful.
1.) Nat Traversal in 6.3.1 was implemented in accordance with the following
-->http://www.ietf.org/internet-drafts/draft-ietf-ipsec-nat-t-ike-05.txt
2.) Clients older than 3.6.x will not pickup on the nat traversal port
change over
3.) Unlike the UDP port 10000 that the concentrator uses the PIX uses UDP
4500
4.) The transparency feature will be active when PAT is use but not when NAT
or public IPs are used. With concentrator it was always active once you
turned this feature on in the client.
Hope this helps.
KC
----- Original Message -----
From: "Chris Johnston" <chris@routerguy.com>
To: <ccielab@groupstudy.com>
Sent: Wednesday, May 14, 2003 8:48 PM
Subject: OT - UDP1000 VPN on PIX 6.3.1
> Hello everyone;
>
> Has anyone tinkered with the NAT Transversal VPN on the new PIX 6.3.1
> release? It's supposed to be in there (somewhere) but I'll be danged if
> I can find explicit documentation on how to enable it.
>
> Have you also noticed that the new VPN client 4.01 is out? It actually
> works with the WinXP easy login since it installs a driver vs. a shim
> into the OS.
>
> Chris Johnston
> 714-306-5746
> 949-653-8819 (fax)
>
> Cannot find REALITY.SYS. Universe halted.
> -------------------------------------------------------------------
This archive was generated by hypermail 2.1.4 : Mon Jun 02 2003 - 15:13:43 GMT-3