Security, WIDS/WIPS and Aruba ECS

New Contributor

VPN through 3200 controller

We have an open wireless network in several buildings, via which users have been accessing the corporate network by VPNing in to a Cisco 3000 concentrator. This has worked fine, but the 3000 has been replaced with an ASA, and all remote access VPN configured to be UDP only. All external access via broadband works fine, but access via the Aruba network is OK to the point where a VPN connection is established, but there is no traffic passed over the tunnel. We believe this is down to a problem with NAT-T or IPSEC passthrough. Wireshark shows that attempts to negotiate NAT-T fail, and the link is established using UDP/500, instead of 4500, and we can find no way of configuring/enabling NAT-T or IPSEC passthrough on the 3200 controller. Does anyone have any idea how to do this, or if it can be done?
Guru Elite

Re: VPN through 3200 controller

Are you allowing all traffic? Sometimes UDP 10000 is also configured on the Cisco VPN clients. You should check to see if you are allowing all the ports that you need.

*Answers and views expressed by me on this forum are my own and not necessarily the position of Aruba Networks or Hewlett Packard Enterprise.*
ArubaOS 8.3 User Guide
InstantOS 8.3 User Guide
Airheads Knowledgebase
Airheads Learning Videos
Search Airheads
Showing results for 
Search instead for 
Did you mean: