Question for GETVPN and Firewall NAT'ing

Unanswered Question
Mar 21st, 2010

I'm looking for documentation for whether if GETVPN supports Firewall NAT'ing.

found a link where port 848 some what addresses GETVPN firewall NAT'ing, but it's limited:

http://www.cisco.com/en/US/docs/ios/sec_secure_connectivity/configuration/guide/sec_encrypt_trns_vpn_ps6441_TSD_Products_Configuration_Guide_Chapter.html

Note - The GDOI protocol uses user Datagram Protocol (UDP) port 848 (with Network Address Translation-Traversal (NAT-T), it floats to 4500).

thanks,

wally

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
trippi Fri, 04/02/2010 - 10:40

You are doing NAT on a group member?

I don't see why it would care as long as the NAT'd address is included in the ACL for encryption.

Actions

This Discussion