RE: non-windows VPN Server behind ISA 2004 - revisited

• From: "Crockett, Gregory" <Gregory.Crockett@xxxxxxxxx>
• To: "[ISAserver.org Discussion List]" <isalist@xxxxxxxxxxxxx>
• Date: Thu, 13 Oct 2005 09:31:25 -0500

No internal ISA.

-----Original Message-----
From: Jim Harrison [mailto:Jim@xxxxxxxxxxxx] 
Sent: Thursday, October 13, 2005 9:03 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] RE: non-windows VPN Server behind ISA 2004 -
revisited

http://www.ISAserver.org

ISA External to ISA internal == NAT.
IPSec + NAT == busted connection.

-----Original Message-----
From: Crockett, Gregory [mailto:Gregory.Crockett@xxxxxxxxx] 
Sent: Thursday, October 13, 2005 5:22 AM
To: [ISAserver.org Discussion List]
Subject: [isalist] non-windows VPN Server behind ISA 2004 - revisited

http://www.ISAserver.org

The VPN server is Aruba Networks wireless switch.  The client, a remote
wireless access point(RAP), connects to the switch via an ipsec/l2tp
tunnel.  The logs of the switch indicate the tunnel completed, however,
ESP died in the process.  The wireless client can attach to the switch
across ISA internally -- not from the Internet.  ISA logs indicate the
RAP connects to the switch on port/protocol 4500/udp (IPSec NAT-T
Server).  When the RAP connects internally, ISA logs indicates
port/protocol (IpSec NAT-T Client).

TIA

greg

------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
jim@xxxxxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

All mail to and from this domain is GFI-scanned.


------------------------------------------------------
List Archives: http://www.webelists.com/cgi/lyris.pl?enter=isalist
ISA Server Newsletter: http://www.isaserver.org/pages/newsletter.asp
ISA Server FAQ: http://www.isaserver.org/pages/larticle.asp?type=FAQ
------------------------------------------------------
Visit TechGenix.com for more information about our other sites:
http://www.techgenix.com
------------------------------------------------------
You are currently subscribed to this ISAserver.org Discussion List as:
gregory.crockett@xxxxxxxxx
To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=isalist
Report abuse to listadmin@xxxxxxxxxxxxx

Other related posts:

• » non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited
• » RE: non-windows VPN Server behind ISA 2004 - revisited

1. Home
2. isalist
3. Archive
4. 10-2005

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---