We administer 8 different Pix 501 Firewalls at remote sites. I have installed pix version 6.3(1) and PDM 3.0(1). I need to be able to vpn to these remote site to assist with server maintenance ect...
I enabled the Fix-up esp-ike and I am able to negotiate a vpn tunnel to all the sites. But I am not able to pass traffic thru the tunnel. I have read several other conversations that are similar to my problem but am not sure what to do.
Do I need to use the command isakmp nat-traversal on my firewall or the remote firewalls?
Is there an accesslist that I have to put in to my firewall, and If so What is it?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...