Tek-Tips is the largest IT community on the Internet today!
Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!
-
Congratulations MikeeOK on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!
Look this question
- Thread starter Oh
- Start date
HI.
Are you using IBM client access?
It need an additional port open, not only 23 for telnet. Are all ports open?
Do you get any syslog messages on either pix?
Bye
Yizhar Hurwitz
Are you using IBM client access?
It need an additional port open, not only 23 for telnet. Are all ports open?
Do you get any syslog messages on either pix?
Bye
Yizhar Hurwitz
Guest_imported
New member
- Jan 1, 1970
- 0
I'm assuming that your gateway setting on the AS400 is correct and that any L3 devices know how to get to the subnet used for VPN clients by using the Pix as the next hop.
Do you have an access-list defining the vpn traffic and the nat 0 command set to match traffic from that list?? Example below:
ip local pool vpn-clients 192.168.1.1-192.168.1.254
access-list 80 permit ip 10.0.0.0 255.0.0.0 192.168.1.0 255.255.255.0
nat (inside) 0 access-list 80
Do you have an access-list defining the vpn traffic and the nat 0 command set to match traffic from that list?? Example below:
ip local pool vpn-clients 192.168.1.1-192.168.1.254
access-list 80 permit ip 10.0.0.0 255.0.0.0 192.168.1.0 255.255.255.0
nat (inside) 0 access-list 80
- Status
Similar threads
- Locked
- Question
- Locked
- Question
- Locked
- Question