Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
334
Views
0
Helpful
1
Replies

VPN Tunnel trough 3rd Party Firewalls

Go to solution
Patrick Werner
Level 1
Level 1

‎05-17-2013 07:50 AM - edited ‎03-11-2019 06:45 PM

Hello Community.

As i know VPN doenst work well with NAT and PATon 3rd Party Firewalls.

We have two site every site has a single IP Adress in the Internet, every Site has a Vigor Draytek Firewall. The ASA's are direct behind the Vigor Drayteks.

                 <--------------------------------- VPN Tunnel ------------------------>

Site1 -> ASA -> Draytek Vigor -> INTERNET -> Draytek Vigor -> ASA -> Site 2

Is that possible, will that be stable ?

Thanks patrick

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎05-21-2013 04:42 PM

Hello Patrick,

I would say that you could use NAT-Traversal to make it happen.

As you already know ESP/AH do not have any ports so you cannot use them with PAT, that is why you must use NAT-T

Regards,

Remember to rate all of the helpful posts

Julio Carvajal

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Julio Carvajal
VIP Alumni
VIP Alumni

‎05-21-2013 04:42 PM

Hello Patrick,

I would say that you could use NAT-Traversal to make it happen.

As you already know ESP/AH do not have any ports so you cannot use them with PAT, that is why you must use NAT-T

Regards,

Remember to rate all of the helpful posts

Julio Carvajal

Julio Carvajal
Senior Network Security and Core Specialist
CCIE #42930, 2xCCNP, JNCIP-SEC
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card