Solved

PIX 501 not allowing 2 VPN users at a time - how do I add to the config on the PIX

Posted on 2006-11-07
3
184 Views
Last Modified: 2013-11-16
Hello all,

I have a PIX 501.  I have multiple users in the field connecting to the 501 via the Cisco VPN Client 4.x.  Any one of them can connect to the VPN and everything is fine, until a second person connects.  Then, the first connection gets cut off.  I have researched the problem and the popular answer is adding:

isakmp nat-traversal 20

to the configuration file in the PIX.  I inherited this network and I am not familiar with the PIX at all.  How do I add this line to the config?

Thank you!
0
Comment
Question by:mlamartina
  • 2
3 Comments
 
LVL 79

Accepted Solution

by:
lrmoore earned 125 total points
ID: 17894319
Simple.
Connect to the PIX. Either telnet to it, or connect directly to the console port using Hyperterminal.
pixfirewall>enable
Password: <enter the password>
pixfirewall#config term
pixfirewall(config)#isakmp nat-traversal 20
pixfirewall(config)#exit
pixfirewall#write mem

Or connect to the PIX using the WEB GUI https://<ip address of pix>
Tools | Command line
 isakmp nat-traversal 20
  [ submit ]
0
 

Author Comment

by:mlamartina
ID: 17906203
Thank you sir!  That worked!
0
 
LVL 79

Expert Comment

by:lrmoore
ID: 17910775
Glad to help!
0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This is about downgrading PIX Version 8.0(4) & ASDM 6.1(5) to PIX 7.2(4) and ASDM 5.2(4) but with only 64MB RAM and 16MB flash. Background: You have a Cisco Pix 515E which was running on PIX 7.2(4) and its supporting ASDM 5.2(4) without any i…
This article will cover setting up redundant ISPs for outbound connectivity on an ASA 5510 (although the same should work on the 5520s and up as well).  It’s important to note that this covers outbound connectivity only.  The ASA does not have built…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

830 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question