Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAT-T verus IPSec/UDP versus IPSec/TCP

I'm trying to determine how one selectes beteween the three nat transparency protocols (NAT-T, IPSec over UDP & IPsec over TCP). I understand that Pix 6.3 supports only the 1st two, and that the VPN 300x gear & the software client support all three.

Does anyone have any reccomendations on which to use? Are there differences in performance or compatability between the three?

I would think one would want to avoid NAT-T, simply because it's a fairly new feature and various bugs may pop up. However, I'm stuck between IPSec UDP & IPSec TCP on 300x concentrators. Any guidelines?

2 REPLIES
Bronze

Re: NAT-T verus IPSec/UDP versus IPSec/TCP

hi,

as long as u can configure ipsec/tcp, you should use it (works better with NAT devices). NAT-T works fine, you can use it as well with pix.

Thx

Afaq

Cisco Employee

Re: NAT-T verus IPSec/UDP versus IPSec/TCP

Hi Jeff,

You can use either NAT Transparency methods as both work very well, it just depends on what suits you better.

Regards,

Aamir

254
Views
0
Helpful
2
Replies
CreatePlease login to create content