Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations Mike Lewis on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN port 47 through the PIX 1

Status
Not open for further replies.
jcanfer

jcanfer

MIS
Aug 9, 2001
16
0
0
GB
I'm currently testing VPN and I am getting the same error message each time I attempt a connection.....

Win2k is dealing with authentication, port 1723 builds a tunnel, but when 47 attempts to tunnel through I get the error;

106023: Deny protocol 47 src outside:192.150.50.1 dst inside:192.150.50.5 by access-group "acl_in"

The access list acl_in is set up to allow the protocol in through 192.150.50.5 from any source and as I said 1723 builds its inbound TCP connection fine.

Any ideas?

Thanks
 
Sort by date Sort by votes
Do you have both the protocol and the port allowed inbound on in acl_in access list? It sounds like protocl 47 is being blocked.

Try adding these

access-list acl_in permit tcp any 192.150.50.5 eq 1723
access-list acl_in permit 47 any host 192.150.50.5

bluecrack
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

XLNTech1
  • Locked
  • Question
iptables port forwarding
Replies
0
Views
126
XLNTech1
XLNTech1
intel233
  • Locked
  • Question
Cisco ASA - VPN Question
Replies
6
Views
152
intel233
intel233
ISDPCMAN
  • Locked
  • Question
RDP fails over VPN
Replies
1
Views
73
gkittelson
gkittelson
Shmid
  • Locked
  • Question
Restricting Sonicwall SSL-VPN users for WAN access
Replies
7
Views
177
Shmid
Shmid
WhosYourDiffie
  • Locked
  • Question
Cisco ASA 5506 VPN for Avaya Phones
Replies
0
Views
53
WhosYourDiffie
WhosYourDiffie

Part and Inventory Search

Sponsor

Back
Top