08-30-2007 10:53 PM - edited 03-05-2019 06:12 PM
Hi all, if I want to establish vpn tunnels behind my router, to my firewall, can I just port forward the vpn ports to it? and where is the natting done, on the fw or router, also would the firewall be in routed or transparent mode ?
09-03-2007 01:15 AM
Can anyone please help on this
cheers
09-04-2007 03:10 PM
you can configure your router not to perform NAT for traffic destined for the remote local lan of your VPN tunnel.
example:
access-list 120 remark NAT pass
access-list 120 remark SDM_ACL Category=2
access-list 120 deny ip 192.168.50.0 0.0.0.255 192.168.105.0 0.0.0.255
access-list 120 permit ip 192.168.50.0 0.0.0.255 any
ip nat inside source list 120 interface Dialer0 overload
12-20-2007 10:46 AM
What if a user has a generic WEB GUI BASED router that only does port forwarding - how can they work around that and establish a tunnel though the asa device is behind this generic router?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: