Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

is public IP to NATed private IP site-to-site VPN possible?

Hi,

My customer having two sites. At one site DSL is directly connected to firewall, it got fixed public IP.

Another site Internet is terminated on Broadband router, this public IP is used for internal clients and firewall.

Now I want to setup site-to-site VPN in between public IP firewall and private IP firewall. is it possible?

Any suggestion in advance is appreciated.

Regards

skrao

1 ACCEPTED SOLUTION

Accepted Solutions
Silver

Re: is public IP to NATed private IP site-to-site VPN possible?

No, public IP to NATed private IP site-to-site VPN is not possible.

2 REPLIES
Silver

Re: is public IP to NATed private IP site-to-site VPN possible?

No, public IP to NATed private IP site-to-site VPN is not possible.

Re: is public IP to NATed private IP site-to-site VPN possible?

Hi Mate,

No, although I've not done tunneling betwwen firewalls, but I've done it between routers & routers to firewalls, but the idea is one in all, the VPNtunneling should be between devices IP's that reaching each other.

In your case, if u do public ip nated to private ip, even though the 2 private IP's assigned on the both firewalls won't be reachable.

I would suggest if u can do tunneling between the 2 public IP's by changing the public IP of the other lan interface of the firewall to be assigned on the wan instead, and let the users access the Internet with usual nat, then u will be able to do tunneling between the firewalls wan interfaces public IP's.

pls rate if it helps.

118
Views
0
Helpful
2
Replies
CreatePlease to create content