Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
623
Views
0
Helpful
4
Replies

How do I setup PIX to Checkpoint IPSec VPN with NAT

ed
Level 1
Level 1

‎10-20-2003 03:42 PM - edited ‎02-21-2020 12:49 PM

I have PIX IPSec VPN to Checkpoint sample config from Cisco.com and it makes sense ok.

Other IPSec sample configs are all based on nat0, but I need to NAT my traffic before it enters the VPN tunnel to the Checkpoint FW, using static nat mappings.

I am running PIX 6.3.2

Has anyone managed to get this working?

Labels:
0 Helpful
4 Replies 4

pkapoor
Level 3
Level 3

‎10-21-2003 02:15 PM

Yes, you can use statics if you want. The translation is not IPSec configuration. It is a seperate way to handle the traffic that aids VPN traffic.

So, the bottom line is, you can use statics instead of nat 0.

Paras

0 Helpful

pkapoor
Level 3
Level 3

‎10-21-2003 02:16 PM

But remember that if you do a static, then it will override the nat/global translations. So, your hosts may not be able to get to the Internet. You may want to consider policy NAT as an option (but the effects of policy nat apply).

0 Helpful

e-aguilar
Level 1
Level 1

‎10-22-2003 08:39 AM

A static translation should work. Just make sure you use a routable IP address otherwise you will be locked out of the Internet.

0 Helpful

ed
Level 1
Level 1
In response to e-aguilar

‎10-22-2003 03:04 PM

thanks for your help

0 Helpful
Customers Also Viewed These Support Documents