I am trying to establish L2TP tunnel using IPSec. I have configured Cisco 3600 as LAC and also with the required IPSec configurations. When I try to establish L2TP tunnel using a PPP client connected to the LAC, the IPSec SA gets established properly and it forwards L2TP control packets also. After the L2TP tunnel establishment, Cisco 3600 (acting as LAC) is not able to forward PPP control packets over the IPSec tunnel. I could see an error message "IP ARP throttled out the arp request for A.B.C.D", for every PPP control packet sent from PPP Client. As far as I know, A.B.C.D should be the IPSec peer acting as LNS, but the actual address for LNS is something different (W.X.Y.Z). L2TP control packets are being sent properly to W.X.Y.Z, but only PPP negotiation packets are being sent to A.B.C.D which is in some other network, not related to LNS.
Any comments and suggestion in this regard would be most welcomed.
Since there has been no response to your post, it appears to be either too complex or too rare an issue for other forum members to assist you. If you don't get a suitable response to your post, you may wish to review our resources at the online Technical Assistance Center (http://www.cisco.com/tac) or speak with a TAC engineer. You can open a TAC case online at http://www.cisco.com/tac/caseopen
If anyone else in the forum has some advice, please reply to this thread.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...