Is it ok to place a 3825 Head end VPN router in a DMZ and Use a private address for the external Interface and perform a NAT to a single Public address.
All users connecting to the IPSec Site to Site VPN will use the Public address and the firewall will perform the translation. The IPSec Tunnel will be established on the 3825 router with the private address.
Is there a potential for any problems with this configuration?
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...