Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
876
Views
0
Helpful
3
Replies

Connect to IPSEC network over VPN

rafaelgarciayvanderzwan
Level 1
Level 1

‎10-25-2010 02:01 AM - edited ‎03-04-2019 10:14 AM

Hello there,

I have a question regarding IPSEC.

At our company we have a Windows server that can only communicate using IPSEC. It has IPSEC enabled with Kerberos as authentication method. Only one department is using that server. There are a lot of confidential files on that server. The members of that department also need acces to those files from their homes. Our company supplies a VPN method to all of its employees. I have tried to connect to that server from home over the VPN conenction but without succes. My XP client is able to communicate IPSEC. Is it possible to make such an IPSEC connection through a VPN tunnel? And if yes, do I need special CISCO equipment for it?

Kind regards,

Rafael.

Labels:
0 Helpful
3 Replies 3

Federico Coto Fajardo
VIP Alumni
VIP Alumni

‎10-25-2010 09:53 AM

Hi,

If you want to connect using IPsec from a windows machine to a windows server then the answer is yes (if going through the Internet, the server requieres a public IP).

It is an L2TP/IPsec connection.


Federico.

0 Helpful

rafaelgarciayvanderzwan
Level 1
Level 1
In response to Federico Coto Fajardo

‎10-25-2010 11:51 PM

Hi Federico,

Many thanks for your reply. The situation is as follows:

At home I connect with a Windows XP machine to the CISCO VPN concentrator on the public Internet. This concentrator then provides me acces to the servers on the internal (no public addresses) network. I can connect to servers without the IPSEC require rule, but not to IPSEC require servers. Is making an IPSEC connection possible in this situation without having a public address no my server? And if yes, what type of CISCO device do I need?

Kind regards,

Rafael.

0 Helpful

Federico Coto Fajardo
VIP Alumni
VIP Alumni
In response to rafaelgarciayvanderzwan

‎10-29-2010 03:26 PM

Interesting...

So you can VPN to the Concentrator using IPsec (that's fine).

Then.. you need to access an internal server using IPsec.

The problem that I see is that to connect using IPsec you should establish a tunnel.

You cannot establish an IPsec connection directly to the internal server if it does not have a public IP or if the concentrator does not redirect the IPsec connections to the internal server.

As a test can you do the following...

Connect using IPsec to the concentrator (now you have access to the internal LAN).

Get access to an internal machine or server (via RDP perhaps), and then create the IPsec connection to the server in question.

Federico.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card