cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
639
Views
0
Helpful
1
Replies

Question for GETVPN and Firewall NAT'ing

KSVY_KSVY_2
Level 1
Level 1

I'm looking for documentation for whether if GETVPN supports Firewall NAT'ing.

found a link where port 848 some what addresses GETVPN firewall NAT'ing, but it's limited:

http://www.cisco.com/en/US/docs/ios/sec_secure_connectivity/configuration/guide/sec_encrypt_trns_vpn_ps6441_TSD_Products_Configuration_Guide_Chapter.html

Note - The GDOI protocol uses user Datagram Protocol (UDP) port 848 (with Network Address Translation-Traversal (NAT-T), it floats to 4500).

thanks,

wally

1 Reply 1

trippi
Level 1
Level 1

You are doing NAT on a group member?

I don't see why it would care as long as the NAT'd address is included in the ACL for encryption.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: