Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
469
Views
0
Helpful
1
Replies

Ipsec between VPN 3000 concentrator and internal Radius server

jmprats
Level 4
Level 4

‎03-17-2006 04:36 AM - edited ‎02-21-2020 02:19 PM

I want to do an Ipsec tunnel between VPN 3000 concentrator and internal Radius server to encrypt PAP authentication. In this device, WebVPN uses PAP and there is no option to change it.

The problem is that you can only do IPsec tunnels from the public interface and I need to do from the private interface to an internal network server. There is a check box to make the private interface as public, but Cisco recommends having only one public interface.

Is there any problem having the internal interface as public?

Any other solution?

Thanks

Labels:
0 Helpful
1 Reply 1

navnit
Level 1
Level 1

‎03-17-2006 06:03 AM

No issue of having public IP on internal interface if you have solid perimeter security infrastructure.

But the recommendation is to use non-routable public IP on inernal interface.

0 Helpful
Customers Also Viewed These Support Documents