From: Sam Munzani (sam@xxxxxxxxxxx)
Date: Mon Nov 06 2000 - 12:53:33 GMT-3
Here is the final answer.
Create conduits from internet to your 1750 router for
AH (Protocol number 51)
ESP (Protocol Number 50)
IKE (UDP 500)
Once you do this, all your IPSEC tunnels will start working.
Sam
> You have to create some conduits and permit AH, ESP and I think UDP 500.
AH
> and ESP are protocol types. Check on CCO to find their protocol numbers.
>
> Sam
>
>
> > Anyone,
> > I am trying to get IPSEC running through a PIX firewall. The
> > situ is:
> >
> > 1. 1750 IPSEC configured
> > 2. FIREWALL NAT
> > 3. Client PC
> >
> > I have got IPSEC running OK between a PC and the 1750 without running it
> > through the firewall so I know my configs are OK.
> >
> > However when I stick the PIX in between it fails. I have configured the
> PIX
> > with a conduit for the PC. Is there anything else it should have?
> >
> > Does anyone know if you can run IPSEC through a PIX Firewall. I don't
> want
> > to terminate on the actual PIX but actually run through it.
> >
> > Any takers......
> >
This archive was generated by hypermail 2.1.4 : Thu Jun 13 2002 - 08:25:42 GMT-3