From: Andrew Larkins (Andrew.Larkins@btgroup.co.za)
Date: Fri Feb 01 2008 - 06:19:06 ARST
Good day all,
I have a full working remote access VPN on both firewalls (PIX515E and
ASA5540). ASA is replacing the PIX at a new location.
Bother work perfectly with IPSec over UDP (nat-traversal UDP 4500) and
only the PIX515E works with TCP 10000. I can however connect the VPN up
& authenticate successfully on the ASA using IPSec over TCP, but I am
absolutely unable to pass any data through the tunnel. Change the
profile back to IPSec over UDP and it works perfectly.
My understanding here is that short of the IPSec setup to establish the
tunnel, all configuration is the same. If the port was blocked somewhere
the VPN would never connect
Any reason's you can think of why this does not work before I log the
case on TAC? Any pointers on where to look further? Again, the ASA and
PIX are identical in config (all aspects) & software except to local IP
pool being different so I can test parallel and being different hardware
platforms
Regards
Andrew
The information contained in this message and or attachments is intended
only for the person or entity to which it is addressed and may contain
confidential and/or privileged material. Any review, retransmission,
dissemination or other use of, or taking of any action in reliance upon,
this information by persons or entities other than the intended recipient
is prohibited. If you received this in error, please contact the sender and
delete the material from any system and destroy any copies.
This archive was generated by hypermail 2.1.4 : Sat Mar 01 2008 - 16:54:47 ARST