08-30-2007 10:53 PM - edited 03-05-2019 06:12 PM
Hi all, if I want to establish vpn tunnels behind my router, to my firewall, can I just port forward the vpn ports to it? and where is the natting done, on the fw or router, also would the firewall be in routed or transparent mode ?
09-03-2007 01:15 AM
Can anyone please help on this
cheers
09-04-2007 03:10 PM
you can configure your router not to perform NAT for traffic destined for the remote local lan of your VPN tunnel.
example:
access-list 120 remark NAT pass
access-list 120 remark SDM_ACL Category=2
access-list 120 deny ip 192.168.50.0 0.0.0.255 192.168.105.0 0.0.0.255
access-list 120 permit ip 192.168.50.0 0.0.0.255 any
ip nat inside source list 120 interface Dialer0 overload
12-20-2007 10:46 AM
What if a user has a generic WEB GUI BASED router that only does port forwarding - how can they work around that and establish a tunnel though the asa device is behind this generic router?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide