Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAT-T on PIX

I have the following network setup.

PIX1---ADSLRtr1---Internet----ADSLRtr2---PIX2

ADLSRtr1 has no NAT, so outside interface of the PIX1 is a real IP Address.

ADSLRtr2 has NAT, so outside interface of PIX2 is 10.x.x.x IP Address.

I want to know if NAT-T is the solution here? If so do I need it defined on both PIX'es?

PIX OS is 6.3 so NAT-T is enabled.

Also, can I get IPSec Debug messages sent to a syslog server, so that I can see what's going on? Also which address do I use for the peer address on PIX2 which is natted.

Any feedback would be great.

Regards

Nik Mihelioudakis

1 REPLY
Cisco Employee

Re: NAT-T on PIX

Hi Nik,

Yes NAT-T is the solution and you need it configured on both the PIXs.

You can configure the syslog on the PIX :

http://www.cisco.com/en/US/customer/products/sw/secursw/ps2120/products_command_reference_chapter09186a00801727a9.html#wp1028090

HTH,

Please rate if helps,

Regards,

Kamal

228
Views
3
Helpful
1
Replies
CreatePlease login to create content