I have a pc with Cisco client installed that terminates on a PIX 501. when the local lan has a PIX outgoing the VPN comes up but no traffic will pass. When the local lan has a Linksys or Dlink firewall/router everything works fine I tried changing MTU, went to 576 no change, I added ipsec nat transparency on the local (originating side) no change.. outgoing PIX is wide open, no access lists etc..
any ideas?
Hi Fred,
You may be experiencing a "10 concurrent user" issue with your PIX 501 license.
Cisco PIX Security Appliance Licensing
Brad Reese Cisco IOS Software - Compatible Partner Matrix by Technology
Could you clarify whether one PIX is involved or two?
And if the outgoing PIX has no access lists, then it will prohibit some kinds of return traffic, because some kinds of return traffic look like "new" traffic.
The 10 license count doesnt come in to play, there is only 2 other devices on it.
I dont think it is an inbound problem on the pix, as everything else works normal..
setup is follows:
client ====> pix a >=== internet =====>pix b (client establishes here)
vpn establishes but no traffic passed
client ====> netgear etc >=====internet ====== >pix b (client establishes here)
vpn works normally
Cabling-Design.com Forums website is not affiliated with any of the manufacturers or service providers discussed here. All logos and trade names are the property of their respective owners.