Hi
I'm lost ,and also new to work with Pix
I have a PIX501 and ADSL with static IP
Cisco PIX Firewall Version 6.3(1)
Cisco PIX Device Manager Version 3.0(0)148
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
Flash E28F640J3 @ 0x3000000, 8MB
BIOS Flash E28F640J3 @ 0xfffd8000, 128KB
0: ethernet0: address is 000b.beae.fe6b, irq 9
1: ethernet1: address is 000b.beae.fe6c, irq 10
Licensed Features:
Failover: Disabled
VPN-DES: Enabled
VPN-3DES-AES: Enabled
Maximum Interfaces: 2
Cut-through Proxy: Enabled
Guards: Enabled
URL-filtering: Enabled
Inside Hosts: 10
Throughput: Unlimited
IKE peers: 10
everything is working except my AT&T VPN Client
I get this in my logserver
%PIX-3-305006: portmap translation creation failed for protocol 50 src inside:192.168.1.3 dst outside:12.20.58.40
access-list inbound permit icmp any any
access-list inside_in permit esp any any
access-list inside_in permit ah any any
access-list inside_in permit udp any eq isakmp any eq isakmp
access-list inside_in permit tcp any any
access-list inside_in permit udp any any
access-list outside_in permit esp any any
access-list outside_in permit ah any any
access-list outside_in permit udp any eq isakmp any eq isakmp
bjaing1# sh nat
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
bjaing1#
SW client information
VPN Server:Type Nortel
VPN Key Exchange
Security
iffie-Hellman Group1
Source port:1525
Destination port:500
VPN Data
Security:ESP,3DES,SHA1
Compression:LZS
I found a note regarding at&t client that they wrote
at&t client don't like NAT
and I think I have forgot some important statement in the config !!!
I'm lost ,and also new to work with Pix
I have a PIX501 and ADSL with static IP
Cisco PIX Firewall Version 6.3(1)
Cisco PIX Device Manager Version 3.0(0)148
Hardware: PIX-501, 16 MB RAM, CPU Am5x86 133 MHz
Flash E28F640J3 @ 0x3000000, 8MB
BIOS Flash E28F640J3 @ 0xfffd8000, 128KB
0: ethernet0: address is 000b.beae.fe6b, irq 9
1: ethernet1: address is 000b.beae.fe6c, irq 10
Licensed Features:
Failover: Disabled
VPN-DES: Enabled
VPN-3DES-AES: Enabled
Maximum Interfaces: 2
Cut-through Proxy: Enabled
Guards: Enabled
URL-filtering: Enabled
Inside Hosts: 10
Throughput: Unlimited
IKE peers: 10
everything is working except my AT&T VPN Client
I get this in my logserver
%PIX-3-305006: portmap translation creation failed for protocol 50 src inside:192.168.1.3 dst outside:12.20.58.40
access-list inbound permit icmp any any
access-list inside_in permit esp any any
access-list inside_in permit ah any any
access-list inside_in permit udp any eq isakmp any eq isakmp
access-list inside_in permit tcp any any
access-list inside_in permit udp any any
access-list outside_in permit esp any any
access-list outside_in permit ah any any
access-list outside_in permit udp any eq isakmp any eq isakmp
bjaing1# sh nat
nat (inside) 1 0.0.0.0 0.0.0.0 0 0
bjaing1#
SW client information
VPN Server:Type Nortel
VPN Key Exchange
Security
iffie-Hellman Group1Source port:1525
Destination port:500
VPN Data
Security:ESP,3DES,SHA1
Compression:LZS
I found a note regarding at&t client that they wrote
at&t client don't like NAT
and I think I have forgot some important statement in the config !!!
