Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,I have cable modem from @home. If I use any PC with DHCP client, it get's ip address from my ISP. However my PIX 506 with 5.31 code is unable to get DHCP address.After doing some research I have discovered following.@home uses DHCP server that req...
I am using it successfully since 6.0 beta. I use it with site-to-site, site-to-client and port mapping for my web server behind firewall.Sam MunzaniCCIE # 6479
I used to have that problem but after putting a checkmark on pap authentication in IAS, it worked like a charm. Default auth is MS-CHAP and router tries PAP.Sam MunzaniCCIE # 6479
He is right about the solution. Only the problem with tunnel end point discovery is it doesn't work with NAT. You have to have legal ip on each desktop since TED uses destination IP address to discover tunnel end point.Sam MunzaniCCIE # 6479
With CISCO routers it's very easy. First do dual NAT and use NATed address in your crypto map interesting traffic. I have tested this and works great.With PIX it's difficult since you can't do dual nat with PIX. Dual NAT on router solves your overlap...
I have done it a few times using NAT 0 commands. Keep VPN terminating outside but in your interesting traffic create access-list that address traffic from DMZ to your remote site. Also include this in NAT 0 command to bypass NAT for this traffic. Wit...
