09-18-2009 07:54 AM
How can I setup a VPN between router1 and router2?
internet --- Router1 --- 172.16.1.0/24
internet --- Router2 --- 59.23.34.0/24
09-18-2009 09:26 AM
James
How does Router1 get out to the Internet? If it does not have any public addresses is there some address translation being done?
If there is translation being done and if the address that Router1 uses getting to the Internet may change then you may need to use a dynamic crypto map on Router2 (and that implies that Router1 may need to initiate the VPN).
HTH
Rick
09-18-2009 09:46 AM
Rick,
Router 1 has a public IP address and is static. Router 1 also does NAT for inside clients, so they can get out on the internet.
Router 2 is actually an ASA, also configured with static public IP address.
normally, for vpn between 2 private networks, on both router1 and ASA, i configure NO NAT for traffic going through the tunnel. However, in this case I assume on router1, i should still NAT traffic going to the 59.23.34.0/24 public network?
Also, on the ASA, I would NOT NAT any traffic going through the tunnel neither.
Does this seem right?
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: