Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
38282
Views
36
Helpful
16
Replies

How NAT-T works with IPSec?

Go to solution
ioanniatr
Level 1
Level 1

‎10-27-2010 05:21 AM - edited ‎02-21-2020 04:56 PM

NAT Traversal performs two tasks: it detects if both ends support NAT-T and NAT-Discovery that detects NAT devices along the transmission path.

NAT-D payload  is a hash of the original IP and port. Devices exchange two NAT-D packets, one with source IP and port, and another with destination IP and port. So the receiving device recalculates the hash and compares it with the existing, if they don't match a NAT device exists.

NAT-T encapsulate IPSec packets in UDP packets with port 4500, providing information to PAT device for translation.

Lets say that we have the network in that picture with PAT running on the router, how  PAT device make unique global identifier if both clients use the same NAT-T global UDP 4500  port ?

How NAT-T realy works in that case?

thanks,

john

Labels:
Preview file
128 KB
0 Helpful
16 Replies 16

Go to solution
ksimsimon
Level 1
Level 1
In response to ioanniatr

‎04-29-2011 01:01 AM

hi all,

a great discussion and a very good help

thank you very much it solves my questions

Klaus

0 Helpful

Go to solution
TCAM
Level 1
Level 1
In response to ksimsimon

‎08-19-2011 07:40 AM

Thanks for an excellent discussions!!! It really helps, Great jobs, keep it up

0 Helpful
Customers Also Viewed These Support Documents