Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
834
Views
0
Helpful
2
Replies

L2L VPN with public ip on the router and firewall with private IP

Go to solution
shanilkumar2003
Level 1
Level 1

‎08-08-2012 03:41 AM

Dear All,

I have a requiremnt for site to site VPN configuration but the remote end firewall doesnt got Public ip ,public ip is termintaed on the router. please find the attached diagram

LAN -->Firewall-privateip --> Router-publicip --ISP

how can i setup site to site VPN tunnel, appreciate urgent help

Thanks in advance..

Shanil

Labels:
Preview file
981 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎08-08-2012 09:22 AM

You can configure static 1:1 NAT for the ASA outside interface with a spare public ip address on the router.

If you don't have spare public ip, then you need to configure static PAT for UDP/500 and UDP/4500 on the router, and enable NAT-T on the ASA.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎08-08-2012 09:22 AM

You can configure static 1:1 NAT for the ASA outside interface with a spare public ip address on the router.

If you don't have spare public ip, then you need to configure static PAT for UDP/500 and UDP/4500 on the router, and enable NAT-T on the ASA.

0 Helpful

Go to solution
shanilkumar2003
Level 1
Level 1
In response to Jennifer Halim

‎08-08-2012 11:59 AM

Would you please share the config ..or any example config please

0 Helpful
Customers Also Viewed These Support Documents