If the Cisco VPN server is a Cisco VPN concentrator, you need to check the
"NAT-T" box.
If it is a Cisco Pix firewall, it needs to run at least version 6.3(x) to
support nat-t. The command on the pix to enable nat-t: "isakmp nat-traversal
20"
Furthermore, you will also need to allow udp port 4500 outbound in addition to
isakmp udp
500 as well.
Good luck.
Nicola Nicoletti <nicola.nicoletti AT STARVOX DOT IT> wrote:
Have you enable nat traversal on vpn server ?
Felipe Chang
OM> To
Sent by: Mailing FW-1-MAILINGLIST AT AMADEUS.US DOT CHECKPO
list for INT.COM
discussion of cc
Firewall-1
@AMADEUS.US.CHECK [FW-1] Cisco VPN Client behind
POINT.COM> Checkpoint
29/03/2005 04.33
Please respond to
Mailing list for
discussion of
Firewall-1
@AMADEUS.US.CHECK
POINT.COM>
I have a customer GPRS, the client have a Cisco VPN client behind my
Firewall (on your laptop) Check Point this APN exit to Internet with hide
NAT, but this connection with Client VPN is wrong. Any idea?
I have Nokia IP 740 with Check Point NG FP3
Regards.
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
Ai sensi del Decreto Legislativo n. 196/2003, si precisa che le
informazioni contenute
in questo messaggio e negli eventuali allegati sono riservate e per uso
esclusivo del
destinatario. Persone diverse dallo stesso non possono copiare o
distribuire il messaggio
a terzi. Chiunque riceva questo messaggio per errore, è pregato di
distruggerlo e di informare immediatamente postmaster AT fondiaria-sai DOT it
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
---------------------------------
Do you Yahoo!?
Yahoo! Small Business - Try our new resources site!
=================================================
To set vacation, Out-Of-Office, or away messages,
send an email to LISTSERV AT amadeus.us.checkpoint DOT com
in the BODY of the email add:
set fw-1-mailinglist nomail
=================================================
To unsubscribe from this mailing list,
please see the instructions at
http://www.checkpoint.com/services/mailing.html
=================================================
If you have any questions on how to change your
subscription options, email
fw-1-owner AT ts.checkpoint DOT com
=================================================
|
