• RSS
  • Twitter
  • FaceBook

Welcome to ISAserver.org

Forums | Register | Login | My Profile | Inbox | RSS RSS icon | My Subscription | My Forums | Address Book | Member List | Search | FAQ | Ticket List | Log Out

Cisco VPN Client

Users viewing this topic: none

Logged in as: Guest
  Printable Version
All Forums >> [ISA Server 2000 Firewall] >> General >> Cisco VPN Client Page: [1]
Login
Message << Older Topic   Newer Topic >>
Cisco VPN Client - 18.May2004 10:07:00 PM   
jwswope

 

Posts: 18
Joined: 18.May2004
Status: offline
I need some help. I have 4 computers that currently create a VPN connection using Cisco VPN Client to the local hospital with our existing firewall using packet screening rules. We are replacing the old Gauntlent firewall with ISA server and I'm having a difficult time figuring out how to make this work with ISA server. Any advice?
Post #: 1
RE: Cisco VPN Client - 18.May2004 10:11:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
Hi jwswope,

check out my article http://www.isaserver.org/articles/IPSec_Passthrough.html and the forum topic http://forums.isaserver.org/ultimatebb.cgi?ubb=get_topic;f=13;t=001993 for some trouble shooting tips.

HTH,
Stefaan

(in reply to jwswope)
Post #: 2
RE: Cisco VPN Client - 20.May2004 3:05:00 PM   
jwswope

 

Posts: 18
Joined: 18.May2004
Status: offline
That article worked great. I can connect with the Cisco VPN client. Now I have an issue that after I connect with the VPN client, I need to launch a telnet application. I am not able to connect with the telnet app through the VPN client. Do you have aany suggestions?

Thanks for your help!

Jim

(in reply to jwswope)
Post #: 3
RE: Cisco VPN Client - 20.May2004 4:03:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
Hi Jim,

did you disable the Firewall client when setting up the VPN connection?
Also, are the Network ID's reachable through the VPN connection different from your internal Network ID's?

HTH,
Stefaan

(in reply to jwswope)
Post #: 4
RE: Cisco VPN Client - 20.May2004 4:31:00 PM   
jwswope

 

Posts: 18
Joined: 18.May2004
Status: offline
I tried connecting with the firewall client turned on and turned off.
The telnet application is Meditech, connecting to the hospital. It uses port 23. My subnet is 10.x.x.x and the hospital is 128.x.x.x.

(in reply to jwswope)
Post #: 5
RE: Cisco VPN Client - 20.May2004 10:24:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
Hi Jim,

so you telnet from 10.x.x.x to 128.x.x.x. Is this correct?

Also, are you sure transparent tunneling is enabled in the VPN client properties? Also, what is the VPN client statistics telling you? If the tunnel port is 0 then you have definitely a Cisco configuration problem.

HTH,
Stefaan

(in reply to jwswope)
Post #: 6
RE: Cisco VPN Client - 21.May2004 5:55:00 PM   
jwswope

 

Posts: 18
Joined: 18.May2004
Status: offline
Transparent tunneling is active. The tunnel port is UDP 1000.

(in reply to jwswope)
Post #: 7
RE: Cisco VPN Client - 21.May2004 10:57:00 PM   
spouseele

 

Posts: 12830
Joined: 1.Jun.2001
From: Belgium
Status: offline
Hi Jim,

are you sure about the tunnel port value? By default it is UDP port 4500 or UDP port 10000 for Cisco older implementations.

What protocols did you allow? Normally you should have UDP port 500 send/receive (IKE), UDP port 4500 send/receive (IETF NAT-T) or UDP port 10000 send/receive (Cisco NAT-T).

HTH,
Stefaan

(in reply to jwswope)
Post #: 8
RE: Cisco VPN Client - 28.May2004 6:13:00 PM   
Rgrotewold

 

Posts: 9
Joined: 5.Sep.2002
Status: offline
I use 2 protocol definitions udp send 500 and udp send 10000 for a cisco vpn client which works.

(in reply to jwswope)
Post #: 9

Page:   [1] << Older Topic    Newer Topic >>
All Forums >> [ISA Server 2000 Firewall] >> General >> Cisco VPN Client Page: [1]
Jump to:

New Messages No New Messages
Hot Topic w/ New Messages Hot Topic w/o New Messages
Locked w/ New Messages Locked w/o New Messages
 Post New Thread
 Reply to Message
 Post New Poll
 Submit Vote
 Delete My Own Post
 Delete My Own Thread
 Rate Posts