Looking for best solution: small office - VPN in, client out to Contivity
I am trying to figure out the best solution for a client with a small office. I am a bit out of my comfort zone here... I have experience with the PIX 525/535 (NAT, not PAT), and 3030, but not with setting up VPN client connections to a PIX 501 on a DSL connection with only 1 IP address available. Any help is much appreciated.
The client has a small office with 10 users. They have a DSL connection with 1 static IP address assigned. They wish for two people to have the ability to VPN into their office. They also have 2 internal users who need to connect to a Nortel Contivity 1500 via the Nortel client software from their office.
The client had a Linksys "router" which is gone now. I was looking at a PIX 501 to provide the VPN connection into their office, but I think I will have problems with the 501 and 1 IP address as far as the Nortel client software is concerned. Would I be better off with a Cisco router?
Re: Looking for best solution: small office - VPN in, client out
Install a PIX 501 with an external switch [501 only has four ethernet]; They are preconfigured to do PAT with the address it learns [DHCP] from the DSL modem...it is also a DHCP server by default. You can also configure it to allow incoming VPN clients...It is also cheap at around $600 [I think]...
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...