Solved

PIX 501 not allowing 2 VPN users at a time - how do I add to the config on the PIX

Posted on 2006-11-07
3
186 Views
Last Modified: 2013-11-16
Hello all,

I have a PIX 501.  I have multiple users in the field connecting to the 501 via the Cisco VPN Client 4.x.  Any one of them can connect to the VPN and everything is fine, until a second person connects.  Then, the first connection gets cut off.  I have researched the problem and the popular answer is adding:

isakmp nat-traversal 20

to the configuration file in the PIX.  I inherited this network and I am not familiar with the PIX at all.  How do I add this line to the config?

Thank you!
0
Comment
Question by:mlamartina
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 17894319
Simple.
Connect to the PIX. Either telnet to it, or connect directly to the console port using Hyperterminal.
pixfirewall>enable
Password: <enter the password>
pixfirewall#config term
pixfirewall(config)#isakmp nat-traversal 20
pixfirewall(config)#exit
pixfirewall#write mem

Or connect to the PIX using the WEB GUI https://<ip address of pix>
Tools | Command line
 isakmp nat-traversal 20
  [ submit ]
0
 

Author Comment

by:mlamartina
ID: 17906203
Thank you sir!  That worked!
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17910775
Glad to help!
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

The DROP (Spamhaus Don't Route Or Peer List) is a small list of IP address ranges that have been stolen or hijacked from their rightful owners. The DROP list is not a DNS based list.  It is designed to be downloaded as a file, with primary intention…
On Feb. 28, Amazon’s Simple Storage Service (S3) went down after an employee issued the wrong command during a debugging exercise. Among those affected were big names like Netflix, Spotify and Expedia.
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question