I have a Cisco 7945 IP phone using SSL and RSA token authentication. When placed outside the firewall it works fine. Behind the firewall it tells me "VPN Authentication Failure". At the distant the authentication is timing out and forcing it to hop to different servers, which causes the RSA token to be stale.
I am assuming that since it works out in the open that the firewall is causing a delay or altering the handshake somehow.
I have tried disabling web filtering as well as adding the phone to the skiplist, creating an exception list to bypass the SSL scanning, and turning https/ssl scanning off under the web filtering.
A Cisco VPN client using SSL and the same RSA token works like a champ.
Out of ideas, any suggestions?
Thanks,
Steve
I am assuming that since it works out in the open that the firewall is causing a delay or altering the handshake somehow.
I have tried disabling web filtering as well as adding the phone to the skiplist, creating an exception list to bypass the SSL scanning, and turning https/ssl scanning off under the web filtering.
A Cisco VPN client using SSL and the same RSA token works like a champ.
Out of ideas, any suggestions?
Thanks,
Steve