From: Chris Johnston (chris@routerguy.com)
Date: Fri May 16 2003 - 13:19:33 GMT-3
AHA! Thanks Adam.
isakmp nat-traversal
Funny thing is, I know I tripped over that in the documentation before.
Geesh.
Chris Johnston
714-306-5746
949-653-8819 (fax)
Cannot find REALITY.SYS. Universe halted.
-------------------------------------------------------------------
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Adam Asay
Sent: Wednesday, May 14, 2003 7:35 PM
To: Chris Johnston
Cc: ccielab@groupstudy.com
Subject: Re: OT - UDP1000 VPN on PIX 6.3.1
Chris,
I installed 6.3.1 on our pix last week. So far it is working great.
The command to enable the NAT Traversal is:
isakmp nat-traversal (timeout)
Be sure to configure your VPN clients to allow IPSec over UDP.
Here is a link to the documentation. Watch for wrap.
http://www.cisco.com/en/US/products/sw/secursw/ps2120/products_configura
tion_guide_chapter09186a008017278c.html#1057446
Adam Asay
Sr Systems Engineer
www.cerberian.com
On Wed, 2003-05-14 at 18:48, Chris Johnston wrote:
> Hello everyone;
>
> Has anyone tinkered with the NAT Transversal VPN on the new PIX 6.3.1
> release? It's supposed to be in there (somewhere) but I'll be danged
> if I can find explicit documentation on how to enable it.
>
> Have you also noticed that the new VPN client 4.01 is out? It
> actually works with the WinXP easy login since it installs a driver
> vs. a shim into the OS.
>
> Chris Johnston
> 714-306-5746
> 949-653-8819 (fax)
>
> Cannot find REALITY.SYS. Universe halted.
> -------------------------------------------------------------------
This archive was generated by hypermail 2.1.4 : Mon Jun 02 2003 - 15:13:44 GMT-3