Cisco 851 Wizard - EasyVPN - Can't find IPSEC over TCP

Hi,

we have a Cisco ASA 5510 at our datacenter. I have successfully configured an EasyVPN server on this device (and tested it with the Cisco VPN Client on a Windows PC). For several reasons we want to have the tunnel go via TCP traffic, I found this option in ASDM (IPSEC -> IKE parameters -> Enable IPSEC over TCP).

But I can't find this option in the Cisco 851 configuration (using Cisco CP).
I also tried the command "crypto ctcp port 10000" on the Cisco 851...

thanks in advance for your advice.
ISBNETAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ChiefITCommented:
0
ISBNETAuthor Commented:
@ChiefIT: no it doesn't... the guide is only talking about a regular IPSEC tunnel, which communicates via the UDP port 500 (and 4500)...
0
gavvingCommented:
What version of IOS is the 851 running?  12.4.9T or greater might be needed according to below document:

https://www.cisco.com/en/US/prod/collateral/iosswrel/ps6537/ps6586/ps6635/ps6659/eprod_qas0900aecd805358e0.html

0
INTRODUCING: WatchGuard's New MFA Solution

WatchGuard is proud to announce the launch of AuthPoint, a powerful, yet simple, Cloud-based MFA service designed to eliminate the vulnerabilities that put your data, systems, and users at risk.

ISBNETAuthor Commented:
@gavving: that looks like a useful document idd... Allthough it will be the following firmware I need:
cTCP on Eas yVPN Remote - 12.4(20)T

You probably meant this: IPsec over TCP on Easy VPN Server - 12.4(9)T
But the 851 acts as a client => EasyVPN Remote
 
 
0
ISBNETAuthor Commented:
tonight I will upgrade the firmware and keep you guys updated.
0
gavvingCommented:
Yeah I saw that it was talking about Easy VPN server and not Remote.  But I figured it can't hurt to upgrade it to the version that supports it in server mode.  That will likely support it in client mode as well.  Let us know how it goes.  Thanks.
0
ISBNETAuthor Commented:
We didn't succeed, but made the communication directly over the Internet...
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
VPN

From novice to tech pro — start learning today.