I have a PIX that consists of a inside and outside network(Internet). The problem arise when my inside users need to establish VPN to a VPN server on the Internet. The external VPN gateway shouldnt establish a gateway2gateway VPN with my PIX or router. Its just a client2gateway scenario. The client will be using a netscreen VPN client on their computers. Can you guys advise me on how to accomplish this? What configuration should I write to my PIX? Open any ports on source and destination? Im using ASDM to configre my PIX. Thanks in advance...
Open port for IP 50 & 51? Do you mean TCP instead? Btw, these UDP and TCP ports should open on source(Inside) port or destination(Outside) side? Is that all I need to open? Any other ports that I need to open on my Inside or Outside network? I came across a remark that mentioned something about opening GRE port too? Is there a need? If yes, any idea what port number is that GRE protocol should I activate and again, open as source or destination?
Btw, I have ACL on my PIX that states that users on the inside network can only access services like http, https, ftp and telnet on the outside destination.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...