Connecting to a PIX 525 firewall using the cisco VPN client behind a firewall

I have an issue with one of our clients connecting to our PIX 525 using the cisco vpn client behind a fireall.
The client is able to establish the VPN session but no data can be passed between the client and the firewall.
The same client is able to successfully connect and pass data when they connect outside of the firewall.
I have 2 questions;

1.  The client has suggested switching to tcp transport from udp to resolve the issue. How do I configure a TCP session on the PIX 525?

2. Is there any other setting I should be looking at to allow connectivity behind the firewall?

spmorrisonAsked:
Who is Participating?
 
martapCommented:

To respond to question 1:

PIX OS versions below 7.0(1) don't support TCP encapsulation. You can upgrade to 7.0 but be aware there are some major changes in that release. Good preperations are a must.

question 2:

You can try adding the following line to your config:

isakmp nat-traversal 30

Good luck!

0
 
grbladesCommented:
What firewall are they using?

Have you asked if they have IP protocol number 50 (ESP) permitted outbound?
0
 
spmorrisonAuthor Commented:
the PIX OS upgrade to 7.0 did the trick. Thanks!
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.