Re: VPN3000 to Router IOS using IP negotiated at intf Router
Thanks for this link!
I think that it is prety new because it was not there the time I tried to find a solution. However at that time a TAC engineer was already telling me this one.
I upgraded to 3.1.1 in where you can configure a base-group with a preshared key. This one will be used now for the routers trying to dial-in retrieving the address from a provider.
This is also to overcome the 'not knowing what a group is' of the IOS.
Tested it and it works!
One drawback there... All the routers will have to have to use the same preshared key now...
Finally I received some information that the IOS in it's roadmap (not official!) has a full Unity client compatibility. In that case you can distinguise the different routers through different configured groups and a preshared key per group.
That would be (to me) the nicest solution for this.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...