Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

IPSec Tunnel Tru. ISA or Microsoft Forefront Threat Management Gateway

Posted on 2009-05-19
3
Medium Priority
?
804 Views
Last Modified: 2013-12-04
I have ISA2006 server installed on my office network and all the pc on the network are  using SNAT. some of the users on the network  have nortel vpn client to connect to corporate head office. Through ISA2006/TMG SNAT nortel vpn client fails to establish a tunnel.
The policy for ISA is set to allow all traffice from inside(internal network) to external and no other restriction is added in the policy.
nortel client version is v04_87
0
Comment
Question by:Manojc3
  • 2
3 Comments
 
LVL 29

Accepted Solution

by:
pwindell earned 1500 total points
ID: 24487066
It is failing due to NAT-T  (NAT Traversal)

IPSec is not capable of running over NAT.  If the Nortel Client was using PPTP it would be working fine.  To overcome the IPSec's failure of NAT requires NAT Traversal.  

Make sure the Nortel Client is configured to use NAT-T

These links may help:
http://www.isaserver.org/articles/IPSec_Passthrough.html
http://forums.isaserver.org/m_2002012471/tm.htm
0
 

Author Comment

by:Manojc3
ID: 24603930
Yes I downloaded the new notel vpn client 6.0 which has NATT support. It working now. Thank you.
0
 
LVL 29

Expert Comment

by:pwindell
ID: 24604025
Very good.  Glad it worked out for you.
 
0

Featured Post

[Webinar] Database Backup and Recovery

Does your company store data on premises, off site, in the cloud, or a combination of these? If you answered “yes”, you need a data backup recovery plan that fits each and every platform. Watch now as as Percona teaches us how to build agile data backup recovery plan.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

In today's information driven age, entrepreneurs have so many great tools and options at their disposal to help turn good ideas into a thriving business. With cloud-based online services, such as Amazon's Web Services (AWS) or Microsoft's Azure, bus…
No security measures warrant 100% as a "silver bullet". The truth is we also cannot assume anything but a defensive and vigilance posture. Adopt no trust by default and reveal in assumption. Only assume anonymity or invisibility in the reverse. Safe…
In a question here at Experts Exchange (https://www.experts-exchange.com/questions/29062564/Adobe-acrobat-reader-DC.html), a member asked how to create a signature in Adobe Acrobat Reader DC (the free Reader product, not the paid, full Acrobat produ…
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses
Course of the Month11 days, 10 hours left to enroll

564 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question