05-03-2007 07:46 AM - edited 02-21-2020 03:01 PM
Hi, I have a number of site to site VPNs which terminate on a PIX. I plan to migrate these VPNs to a router that is sat on a DMZ connected to the PIX. Before I do that I'm going to configure a new VPN to terminate on the router but I also need the VPNs that terminate on the PIX to not be affected.
If I configure NAT traversal on the PIX, will my other VPNs be affected?
Many Thanks in Advance
Dom
Solved! Go to Solution.
05-03-2007 11:52 PM
Hi Dom,
Why do you want to configure NAT-Traversal on PIX if you are going to terminate your VPN on router (which is on DMZ).
Are you doing any NAT on PIX thru to Router?
If you want to configure NAT-Traversal it should be configured on the end devices (on Router in your case).
Example:
When a user with Cisco client or a Cisco router behind NAT wants to connect to another device (such as PIX, ASA or Router) NAT-T should be configured on the end-device (which will be PIX or ASA)
Hope that helps.
* Please rate the post
05-03-2007 11:52 PM
Hi Dom,
Why do you want to configure NAT-Traversal on PIX if you are going to terminate your VPN on router (which is on DMZ).
Are you doing any NAT on PIX thru to Router?
If you want to configure NAT-Traversal it should be configured on the end devices (on Router in your case).
Example:
When a user with Cisco client or a Cisco router behind NAT wants to connect to another device (such as PIX, ASA or Router) NAT-T should be configured on the end-device (which will be PIX or ASA)
Hope that helps.
* Please rate the post
05-04-2007 02:01 AM
Oh OK - That's cleared it up for me.
Many Thanks =]
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: