Re: Cisco VPN Connection Problems

Tech Tip: Click here to run a free scan for Windows Errors and optimize PC performance

Hi Chris.

I just solved my problem adding remote machine IP address in my Internal
Network Address Interval. So when the tunnel is established, ISA dont
"touch" this traffic allowing Cisco client routing to the correct
destination.

Well, the issue was solved but I am very interesting to replace Cisco
Clients on the internal machines for a Site-toSite conection with our
customer (the customer side infraestructure is out of my control)...

I hope that it help you, Chris.

Miguel.

"Chris Rees" <chrisr@xxxxxxxxxxxxxxxxxxxxxxxxx> escribió en el mensaje
news:u4pp68L1FHA.2072@xxxxxxxxxxxxxxxxxxxxxxx
>I can not connect to two customer sites. One site has a CISCO PIX 506E and
>another has a CISCO PIX 515.
>
> If I could configure ISA 2004 to connect directly to them it would be
> great.
>
> The problem is I dont know how to do this! Can anybody direct me to any
> help setting this up? I dont have much control over our customers CISCO
> firewall so that may make things more difficult.
>
>
> "Miguel" <miguel@xxxxxxxxx> wrote in message
> news:ONsIzyL1FHA.2072@xxxxxxxxxxxxxxxxxxxxxxx
>> Hi
>>
>> I'm on your same trouble and I would like go far away with this issue.
>> It´s possible to implement a Site-to-site VPN with ISA 2004? so we can
>> forget use Cisco Vpn client on internal Machines. I've configured some
>> site-to-site VPN with PPTP, but not with IPsec.
>>
>> Chris, I hope that you can apply the idea... if we find the solution, of
>> course :).
>>
>> Thanks for any help.
>>
>> "Chris Rees" <chrisr@xxxxxxxxxxxxxxxxxxxxxxxxx> escribió en el mensaje
>> news:%23AjVWNJ1FHA.164@xxxxxxxxxxxxxxxxxxxxxxx
>>> Hi,
>>>
>>> We have recently changed our firewall from a linux firewall to an
>>> ISA2004 server.
>>>
>>> We connect to 3 customer sites using CISCO VPN Client. The CISCO client
>>> is installed on the Windows XP workstations behind the ISA server.
>>>
>>> Ever since installing ISA 2004 we have been able to connect to the sites
>>> VPN but can not commuinicate with servers on site using RDP, SQL, PING
>>> etc. Is there anthing that needs to be configured on the ISA server? I
>>> have opened all protocols outbound to the customers VPN IP address and
>>> as far as I can see nothing is being blocked.
>>>
>>> One other thing I have noticed is that there doesnt seem to be anything
>>> being recieved in the byte count on the CISCO vpn client statistics.
>>>
>>> Is there any way to configure the ISA 2004 server to route VPN traffic
>>> on behalf of the clients instead of installing VPN client on each
>>> workstation?
>>>
>>> Regards,
>>>
>>> Chris Rees.
>>>
>>
>>
>
>


.

Relevant Pages

  • Re: Cisco VPN Connection Problems
    ... another has a CISCO PIX 515. ... If I could configure ISA 2004 to connect directly to them it would be great. ... >> We connect to 3 customer sites using CISCO VPN Client. ...
    (microsoft.public.isaserver)
  • Re: How to connect to a CISCO VPN Server behind ISA Server 2000 ?
    ... You'll have to run the Cisco system with UDP Encapsulation because ISA will ... > I need to connect mi PC behind an ISA Server 2000 Firewall to a CISCO VPN ... I've installed the CISCO VPN Client in mi PC and created a rule ...
    (microsoft.public.isa.vpn)
  • Re: L2TP/IPSec Client VPN Kills Passthrough IPSec VPN
    ... Once you added the Cisco Router for the S2S-VPN it *became* the primary LAN ... The Default Gateway of the Cisco box needs to be the ISA, ... the "P" in the VPN means. ... RRAS starts on the ISA server, after setting up the client remote access, ...
    (microsoft.public.isa.vpn)
  • Re: L2TP/IPSec Client VPN Kills Passthrough IPSec VPN
    ... The Cisco Site2Site route is just one of many gateways on the network. ... networks are specified as local/private networks in the ISA configuration. ... But, the moment that RRAS starts, traffic through the Cisco VPN stops. ...
    (microsoft.public.isa.vpn)
  • Re: Cisco Systems VPN Client allows local logon with Elevated Privileges
    ... This is in response to the mail sent by Nick Staff. ... By default these settings are not locked to standard users ... Cisco Response: ... This option was added in Cisco VPN Client release 3.1.24 and later for the ...
    (NT-Bugtraq)