Solved

Client VPN through Pix Firewall

Posted on 2009-05-18
2
332 Views
Last Modified: 2012-05-07
I have a Pix that maintains two vpns to other companies. The traffic accross the vpn's are for the 10.246.x.x, 10.248.x.x, 10.250.x.x, 10.64.x.x, and 10.102.x.x subnets. Now I have a workstation behind the pix that is going to use the Cisco VPN client to connect to another company. The vpn is for the 10.254.13.0 subnet. The vpn client succresfully connects. However, I then launch a secure FTP client but it never connects to the ftp server across the vpn. I can't ping anything across the vpn on the workstation. I have this statement on the Pix for the other vpns:
access-list nonat permit ip 192.168.230.0 255.255.255.0 10.0.0.0 255.0.0.0

Could this statement be preventing the desktop's vpn from passing traffic correctly?
pix.txt
0
Comment
Question by:ccptechs
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 43

Accepted Solution

by:
JFrederick29 earned 500 total points
ID: 24415710
No, most likely its because the "other company" that this desktop is connecting to doesn't have NAT-T enabled on their VPN server.  I would contact their support and see if they will enable it.
0
 

Author Closing Comment

by:ccptechs
ID: 31582744
Need to ask another question
0

Featured Post

Free Tool: Port Scanner

Check which ports are open to the outside world. Helps make sure that your firewall rules are working as intended.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I recently updated from an old PIX platform to the new ASA platform.  While upgrading, I was tremendously confused about how the VPN and AnyConnect licensing works.  It turns out that the ASA has 3 different VPN licensing schemes. "site-to-site" …
Many of the companies I’ve worked with have embraced cloud solutions due to their desire to “get out of the datacenter business.” The ability to achieve better security and availability, and the speed with which they are able to deploy, is far grea…
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…

717 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question