Security Basics mailing list archives

RE: Multiple VPN connecions

From: "Thomas T. Evans, III" <ttevans () hawkcorp net>
Date: Mon, 24 Jan 2005 14:03:33 -0500

I'm not sure I understand your diagram correctly but we have lots of users
connecting from home using Linksys and DLink routers. We haven't had any
problems with the VPN3K dropping connections.

Thomas T. Evans, III CCNA
Senior Network Manager
Hawk Corporation
ttevans () hawkcorp net
216-267-7787 Ext. 500
Cell: 440-669-2526
Fax: 917-464-7241
President, MFG/Pro Midwest User Group

"The difference between genius and stupidity is genius has limits" -- Albert
Einstein


-----Original Message-----
From: Fernando Simonacci [mailto:fernando.simonacci () webred it] 
Sent: Friday, January 21, 2005 4:06 AM
To: security-basics () securityfocus com
Subject: Multiple VPN connecions

Greetings list,

I'm just dealing with a silly problem but that seems to me with no 
solution. Here is the scenario:


[ServerFarm(Cisco VPN3000)]<->Internet<->Router<->[pc.(Vpn Client sw)]


The company I work for, gives access to it's services only to remote 
pc.s via Cisco VPN client sw.

Everything works fine only if the remote router is a Cisco device (let's 
say 827,  837,  1720 or greater models) or remote pc.s are calling 
through a generic Internet connection (ADSL, Dialup, etc.).
In such situations where the remote router is not a Cisco device, it 
seems that only a single VPN connection is allowed by the router itself  
and every new VPN connection causes the existing one to be dropped. I 
guess that the router drops the active VPN connection for a kind of 
security reason, related to the discovery of  a routing modification due 
to the request of a new VPN connection, but I can't figure out how to 
work around the problem.

Having a single remote pc. working a time is not a good solution, 
neither is the whole substitution of remote routers with Cisco ones'  :-) !

Does anybody have any suggestion?

Thank you all
- Fernando

-- 
____________________________________________
Fernando Simonacci - Network Management

 WEBRED SpA - Via Manfredo Fanti, 2
      06124 Perugia (Italy)
PGP Key server: HTTP://pgpkeys.mit.edu:11371
Tel.: 075-5027.463  -  335-1200934
Fax.: 075-5027.281




-- 
____________________________________________
Fernando Simonacci - Network Management

  WEBRED SpA - Via Manfredo Fanti, 2
       06124 Perugia (Italy)
PGP Key server: HTTP://pgpkeys.mit.edu:11371
Tel.: 075-5027.463  -  335-1200934
Fax.: 075-5027.281

Current thread:

Multiple VPN connecions Fernando Simonacci (Jan 24)
- RE: Multiple VPN connecions Thomas T. Evans, III (Jan 24)
- <Possible follow-ups>
- RE: Multiple VPN connecions Doll, Josh (Jan 25)