cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
504
Views
0
Helpful
2
Replies
Highlighted

L2L VPN with public ip on the router and firewall with private IP

Dear All,

I have a requiremnt for site to site VPN configuration but the remote end firewall doesnt got Public ip ,public ip is termintaed on the router. please find the attached diagram

LAN -->Firewall-privateip --> Router-publicip --ISP

how can i setup site to site VPN tunnel, appreciate urgent help

Thanks in advance..

Shanil

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

L2L VPN with public ip on the router and firewall with private I

You can configure static 1:1 NAT for the ASA outside interface with a spare public ip address on the router.

If you don't have spare public ip, then you need to configure static PAT for UDP/500 and UDP/4500 on the router, and enable NAT-T on the ASA.

2 REPLIES 2
Cisco Employee

L2L VPN with public ip on the router and firewall with private I

You can configure static 1:1 NAT for the ASA outside interface with a spare public ip address on the router.

If you don't have spare public ip, then you need to configure static PAT for UDP/500 and UDP/4500 on the router, and enable NAT-T on the ASA.

L2L VPN with public ip on the router and firewall with private I

Would you please share the config ..or any example config please