From: Jose James (jose.james@trafigura.com)
Date: Wed Jun 07 2006 - 14:40:35 ART
Hi,
We currently have users connecting via the vpn client to a concentrator with the proxy functionality. We also connect via tcp 10000. Are you able to connect to the rest of the lan via the vpn? Can you ping the proxy server? If you can ping it and have a problem connecting to the proxy port then there is a issue on the proxy server. Most likly the isa needs the vpn pool ip address added to it allowed connectivity subnet.
Let me know
From BlackBerry HandHeld Device
-----Original Message-----
From: nobody@groupstudy.com
To: ccielab@groupstudy.com
Sent: Wed Jun 07 16:20:48 2006
Subject: Cisco VPN Client
Group,
I have a problem dealing with VPN Client. Below is the explanation:
I have couple of users in Wisconsin state gov (transportation department)
who want to access UW Madison network using VPN Client 4.8.01. Their
connection is terminated on the VPN concentrators on UW side. We have a
proxy based firewall ("Sidewinders" I dont know if you have heard about it.)
here at Wisconsin state gov(transportation department).
We set them (Users) up for a tunnel using TCP port 10000. Initially we set
it up as a proxy, but it did not work --
a connection got established, but it tended to close down in less than 2
minutes.
We then set them up using a packet filter, and that worked fine.
my question for you would be whether or not Cisco did something in their VPN
Client software that might precludes(make it impossible) for a proxy based
firewall connection. (For Eg: they were checking TCP sequence numbers or
taking some other action to prevent a "man in the middle").
Please advice
Dharmendra Shah
This archive was generated by hypermail 2.1.4 : Sat Jul 01 2006 - 07:57:32 ART