×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Cisco 506 NAT IPSec

Unanswered Question

I was wondering if it was possible to have an IPSec tunnel originate within a local area network that sits behind a 506 with NAT'ing enabled. I have tried to use the following command to get this to work to no avail.


sysopt connection permit-ipsec command


The IPSec client that resides behind the firewall requires authentication header and I assume that is where my problem lies. Much thanks in advance.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
lisa.hall Tue, 06/18/2002 - 12:59
User Badges:

As long as the client is getting a real NAT address and not a PAT address you should be fine. Does your client software support NAT transparency mode like the one for the Cisco VPN concentrators?

Actions

This Discussion