Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
247
Views
0
Helpful
1
Replies

PAT to endpoint

rweales01
Level 1
Level 1

‎11-09-2007 09:17 AM - edited ‎03-09-2019 07:19 PM

Our company is going to create an "iVPN" with a partner. The partner company requires:

1. "Model of vpn firewall" (they are using Checkpoint, we use ASA 5510)

2. "One public ip for the partner endpoint"

3. "The public ip addresses inside that tunnel or you can PAT to that endpoint ip"

Number three is what I don't understand. I have setup several l2l and remote vpn's for our network, but I'm not sure exactly what they are requesting.

Can anyone shine some light on this?

TIA!

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎11-10-2007 11:49 AM

Hi

I suspect what they are saying is that they do not want to see the source IP addresses of your clients so they are expecting you to either

1) Use a separate public IP address and PAT all your source IP addresses to that one IP address

2) PAT all your source IP addresses behind the public IP address attached to the outside interface of your ASA5510.

Some companies i have setup VPN's with insist on only receiving public IP addresses through the VPN tunnel.

HTH

Jon

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents