I have the following network setup.
ADLSRtr1 has no NAT, so outside interface of the PIX1 is a real IP Address.
ADSLRtr2 has NAT, so outside interface of PIX2 is 10.x.x.x IP Address.
I want to know if NAT-T is the solution here? If so do I need it defined on both PIX'es?
PIX OS is 6.3 so NAT-T is enabled.
Also, can I get IPSec Debug messages sent to a syslog server, so that I can see what's going on? Also which address do I use for the peer address on PIX2 which is natted.
Any feedback would be great.