I'm having issues establishing a VPN on a 871 through a NAT.
The 871 goes through an ISP to another router across the internet. It has 4 VLANs configured, and the goal is to VPN one to a network through the internet. Obviously being the internet, the private addresses are all running through a nat on fa 4 (the WAN port on the 871)
In a test setup, I can successfully perform NAT, or the VPN but not both at the same time. The NAT seems to take precedence over the crypto map.
I've tried setting this up with both CLI and SDM, but neither way seems to work. Config below with working VPN but NAT turned off.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...