Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
369
Views
0
Helpful
2
Replies

NAT-T verus IPSec/UDP versus IPSec/TCP

jeff.roback
Level 1
Level 1

‎04-09-2003 09:53 PM - edited ‎02-21-2020 12:28 PM

I'm trying to determine how one selectes beteween the three nat transparency protocols (NAT-T, IPSec over UDP & IPsec over TCP). I understand that Pix 6.3 supports only the 1st two, and that the VPN 300x gear & the software client support all three.

Does anyone have any reccomendations on which to use? Are there differences in performance or compatability between the three?

I would think one would want to avoid NAT-T, simply because it's a fairly new feature and various bugs may pop up. However, I'm stuck between IPSec UDP & IPSec TCP on 300x concentrators. Any guidelines?

Labels:
0 Helpful
2 Replies 2

afakhan
Level 4
Level 4

‎04-09-2003 10:25 PM

hi,

as long as u can configure ipsec/tcp, you should use it (works better with NAT devices). NAT-T works fine, you can use it as well with pix.

Thx

Afaq

0 Helpful

awaheed
Cisco Employee
Cisco Employee

‎04-10-2003 01:09 PM

Hi Jeff,

You can use either NAT Transparency methods as both work very well, it just depends on what suits you better.

Regards,

Aamir

0 Helpful
Customers Also Viewed These Support Documents