VPN Users & NAT?

Unanswered Question
Jun 10th, 2008

I have a working configuration with an 877 ADSL router. I have L2TP/IPSec VPDN working on the same router with some Windows clients and this works fine, however I am stuck with how to perform NAT for these users when going back out. The virtual-template interface is configured as follows:

interface Virtual-Template10

ip unnumbered Loopback0

ip nat inside

ip virtual-reassembly

peer default ip address pool default

ppp authentication ms-chap-v2 PPP-VPN

I thought just enabling NAT inside on the Virtual-Template interface would work, however no translations are happening. There is a footnote on CCO regarding NAT & Virtual-Templates and it says:

'If you want to use NAT with a virtual-template interface, you must configure a loopback interface. See Chapter 1, "Basic Router Configuration," for information on configuring the loopback interface.'

However that is all it says. I have enabled NAT inside on the loopback interface, however this hasn't solved the issue (I was curious why this would as the traffic from the clients doesn't hit the loopback interface?).

Has anyone got a working example of this scenario?



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion