IPSEC VPN on PIX behind Vigor ADSL router

Discussion in 'Cisco' started by Bert Roos, Apr 7, 2004.

  1. Bert Roos

    Bert Roos Guest


    We're trying to setup an L2TP/IPSEC based remote access VPN on a PIX 515.
    This PIX is connected to the Internet through a Vigor 2600 ADSL router (from
    Draytek). The VPN works perfectly fine when we connect the VPN client (a
    Windows 2000 PC with update 818043 installed) between the Vigor and the PIX,
    but it does not work when the same client connects over the Internet. We've
    already switched on nat-traversal, but when switching on debugging, we still
    get an error saying 'proxy identities not supported'.

    Does anybody have a clue on how to resolve this?

    Thanks in advance, Bert Roos

    (please reply to group).
    Bert Roos, Apr 7, 2004
    1. Advertisements

  2. Bert Roos

    John Rennie Guest

    You could configure the Vigor 2600 to bridge instead of routing, so the PIX
    has a valid Internet address and in effect sees the Internet directly.

    How you set the Vigor to bridge isn't immediately obvious, but is described in
    the faqs on the Draytek web site.

    John Rennie, Apr 9, 2004
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.