|
|
|
|
|
Posted by on October 3, 2006, 5:36 pm
If you were Registered and logged in, you could reply and use other advanced thread options
Hello,
Since past 3-4 days, I have been trying different options to resolve an
issue with a remote site VPN tunnel. I have the tunnel up and working.
I have tried using IPSEC with low,medium and strict security profile.
Since I am using Shiva VPN devices, I have tried using their Shiva
Smart Tunnels too. They all work fine. I can perform all the normal
operations like file copy, establish VNC sessions and browse interent
too. The only problem is with the telnet session from that remote site
to another site which goes through my comapny LAN. The telnet session
works fine from the internal company LAN, but it doesnt work from that
remote site. It starts of well allowing the users to log in, but once
they log in, it freezes up. I am assuming that its the VPN connection,
possibly the encryption or the encapsulation that is causing this
problem. Somewhere in between the tunnel, the data is getting
corrupted. I could be wrong. I need some advice here, as that telnet
application is very crucial for that site to run.
Here are the security profiles that I have tried:
secure-profile IPSEC-Default
encapsulation v2-esp
authentication key
secondary-authentication none
ike-group 7
ike-algorithm 3des
ike-authentication hmac-md5
ike-crypto-period 2880
ike-kbyte-limit 0
aggressive-mode off
perfect-forward-secrecy off
ipsec-commitbit disable
negotiate-higher-security off
preserve-tos on
esp-authentication hmac-md5
ah none
algorithm aes-128
tunnel-esp-mode on
crypto-period 720
kbyte-limit 100000
timeout 65
keep-alive 15
client-timeout 65
client-keep-alive 15
udp-encapsulation 0
split-tunnel disable
secure-profile S2S-TUNNEL
encapsulation sst
authentication key
preserve-tos on
public-key-length 512
algorithm des
crypto-period 720
timeout 180
keep-alive 60
client-timeout 180
client-keep-alive 60
compression on
protocol 17
packet-key enable
split-tunnel disable
thanks
Ankit
|
| Similar Threads | Posted | | cisco VPN ipsec tunnel virtual interface operation detail question | July 28, 2006, 3:06 pm |
| Nortel Contivity VPN connection profile | August 24, 2005, 7:33 pm |
| Simple netmask question, could some one please answer this question for me. | October 11, 2007, 10:22 pm |
| Static ip important for security? | February 7, 2008, 4:16 pm |
| Citrix, VPN, Remote Desktop and Wireless security | November 18, 2005, 4:05 pm |
| VPN Concentrator 3000 using TOKEN for security enhancement | December 13, 2006, 7:17 am |
| eBay: Linksys RVS4000 4-port gigabit security router w/VPN | December 7, 2007, 5:30 pm |
| Infotecs Advances ViPNet Virtual Private Network With New Security And Communication Features | July 17, 2006, 10:54 am |
| Information technology is incomplete without information security | April 15, 2008, 1:50 am |
| Sometimes a tunnel... sometimes not | February 8, 2005, 12:14 pm |
|
|
Home Cabling Guide
Finally, an instantly downloadable book that saves you thousands in home improvement dollars!
Enjoy living in 21st century technology-advanced home while increasing its selling value and competitive advantage
on the real estate market. Whether your cabling is for home office or high-tech
leisure, you can wire your home yourself or learn "wirish" to speak with your cabling contractors in their language!
Learn More
|
Yahoo! 
Google 
Windows Live 
del.icio.us 
digg 
Netscape 
XML site map