07-03-2002 06:10 AM - edited 02-20-2020 10:08 PM
HI everybody,
I know a lot of people out there should see this issue, once the client is behind some NAT device, and they cannot create the VPN tunnel with either the PIX or IOS router. I think this is really common setting for a lot of company out there. and you cannot always have a static NAT for each connection.
Are there anyone has any soluction for this, so the client(behine NAT) can connect to either the PIX or IOS.
Look forward for any suggestion, i really appreciate that.
Silvia
07-03-2002 11:41 AM
Hi Silvia,
At this time Cisco is working towards providing a solution with something like IPSec/NAT for the PIX and IOS aswell (just like the VPN3000). Thats the only way I see these packets to go through the PAT in the middle. If anyone has any other suggestions please feel free to add to this.
Regards,
Aamir Waheed,
Cisco Systems, Inc.
-=-=-
07-12-2002 10:02 AM
Hi,
If the device doing the NAT at the remote site is a cisco router.
Try :
http://www.cisco.com/warp/public/471/ios_pat_ipsec_tunnel.html
Its worked for me !
Abdelilah
07-12-2002 11:17 AM
I have heard a lot of people asking for this, my self included. I spoke with some of the "PIX Guys" at Networkers (San Diego) and they told me that IPSec through NAT (UDP encapsulation) like the VPN 3000 would be aviable in PIX-OS 6.3 due out in Jan 2003.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide