Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
430
Views
0
Helpful
1
Replies

IPSEC tunnel through another firewall

kokkiong77
Level 1
Level 1

‎10-27-2013 06:32 PM - edited ‎02-21-2020 07:16 PM

Hi,

We are currently planning to add a perimeter firewall (Cisco ASA). We have concern on the IPSEC tunnel currently established on existing firewall (Cisco ASA).   

Below is a simple representation of how the current setup and future setup:-

External site   -> Internet ->   Cisco ASA -> Internal network

                     (IPSEC tunnel)

External site  -> Internet ->  Cisco ASA ->  Cisco ASA -> Internal network

                      (            IPSEC Tunnel      )   

Both the new firewall and existing firewall will have public IP. We will configure access list to allow IPSEC on new perimeter firewall and exclude the current firewall external IP from PAT.

Is there anything need to take care of ?

Thanks.

Labels:
0 Helpful
1 Reply 1

Michael Muenz
Level 5
Level 5

‎10-28-2013 02:13 AM

When both have a public IP there won't be any issue with IPSec

Michael

Please rate all helpful posts

Michael Please rate all helpful posts
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents