Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
595
Views
0
Helpful
1
Replies

Site to Site VPN using private address and port forwarding

shanemoss
Level 1
Level 1

‎10-08-2013 02:32 AM

Hi folks, I'm having some difficulty setting up a site to site VPN using two ASAs.  One side uses a private address configured via DHCP from the service provider.  This in supposedly NATed by the ISP so that incoming traffic to our public address is forwarded to the private address, likewise outbound traffic has its source IP address translated to this public address.  My question is, should this work or do I need to have the public address configured on the outside interface of the ASA?  If it should work, there is something I'm missing from the configuration, is there any special configuration that would make it work?

Thanks in advance. S.

Labels:
0 Helpful
1 Reply 1

rizwanr74
Level 7
Level 7

‎10-08-2013 07:28 AM

Dear Shane,

It should work with nated private to public address.  Please make sure that all vpn-tunnel bound traffic is static-routed to gateway address of ISP.

thanks

Rizwan Rafeek.

0 Helpful
Customers Also Viewed These Support Documents