Security, WIDS/WIPS and Aruba ECS

Reply
New Contributor
Posts: 1
Registered: ‎04-13-2011

VPN through 3200 controller

We have an open wireless network in several buildings, via which users have been accessing the corporate network by VPNing in to a Cisco 3000 concentrator. This has worked fine, but the 3000 has been replaced with an ASA, and all remote access VPN configured to be UDP only. All external access via broadband works fine, but access via the Aruba network is OK to the point where a VPN connection is established, but there is no traffic passed over the tunnel. We believe this is down to a problem with NAT-T or IPSEC passthrough. Wireshark shows that attempts to negotiate NAT-T fail, and the link is established using UDP/500, instead of 4500, and we can find no way of configuring/enabling NAT-T or IPSEC passthrough on the 3200 controller. Does anyone have any idea how to do this, or if it can be done?
Guru Elite
Posts: 20,820
Registered: ‎03-29-2007

Re: VPN through 3200 controller

Are you allowing all traffic? Sometimes UDP 10000 is also configured on the Cisco VPN clients. You should check to see if you are allowing all the ports that you need.


Colin Joseph
Aruba Customer Engineering

Looking for an Answer? Search the Community Knowledge Base Here: Community Knowledge Base

Search Airheads
Showing results for 
Search instead for 
Did you mean: