Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Webcast-Catalyst9k
New Member

asa behind dsl router

Hi all, if I want to establish vpn tunnels behind my router, to my firewall, can I just port forward the vpn ports to it? and where is the natting done, on the fw or router, also would the firewall be in routed or transparent mode ?

3 REPLIES
New Member

Re: asa behind dsl router

Can anyone please help on this

cheers

New Member

Re: asa behind dsl router

you can configure your router not to perform NAT for traffic destined for the remote local lan of your VPN tunnel.

example:

access-list 120 remark NAT pass

access-list 120 remark SDM_ACL Category=2

access-list 120 deny ip 192.168.50.0 0.0.0.255 192.168.105.0 0.0.0.255

access-list 120 permit ip 192.168.50.0 0.0.0.255 any

ip nat inside source list 120 interface Dialer0 overload

New Member

Re: asa behind dsl router

What if a user has a generic WEB GUI BASED router that only does port forwarding - how can they work around that and establish a tunnel though the asa device is behind this generic router?

140
Views
0
Helpful
3
Replies
CreatePlease to create content