NAT IP-SEC VPN Problen
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-04-2009 06:44 AM - edited 03-04-2019 06:14 AM
I have an 871W
Site to Site IP_SEC VPN is set up and working with a remote Linksys BEFDX41 router.
Easy VPN Server is also set up and working
Problem :
Traffic from the Remote site over the site-to-site VPN works
BUT if I add a static NAT entry on the public interface mapping to an internal IP (eg : route port 80 to an internal server) - traffic to that port times out on the remote side.
- Labels:
-
Other Routing
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-04-2009 07:15 AM
HI Try this below command and let me know
Ip nat source static ( internal server ip ) ( public external IP )
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-04-2009 08:14 AM
Sorry - no go on that one ... same result
As soon as I remove the NAT rule, ti's ok
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
10-04-2009 09:07 AM
Could you provide more details ie.
when it works what IP address are you connecting from and to what IP address are you connecting.
When it doesn't work what IP address are you connecting from and to what IP address are you connecting.
What do your crypto acls look like ie. if you map an internal server to a different IP are you then including new IP in your crypto map acl ?
Jon
