Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1069
Views
0
Helpful
1
Replies

IPSec VPN with one node behind a NAT

gregoriobueno
Level 1
Level 1

‎08-19-2011 07:01 AM - edited ‎02-21-2020 05:31 PM

Hello,

I have 2 IP address, one is a public address and the other is a private. It´s possible to built a IPSec VPN between these 2 IP address? From the private IP address, I can reach the public one, but from the public address, I can´t reach the private one. With NAT Traversal, it´s possible to built this VPN? The only way I could built it was configuring a GRE tunnel between the 2 public ip address, and with two static routes. With this configuration, I could reach the private address from the public address.

There´s a attached picture to explain this scenario.

Thanks.

Labels:
Preview file
9 KB
0 Helpful
1 Reply 1

itadminasf
Level 1
Level 1

‎08-19-2011 08:20 AM

Yes it's possible, I've done it with 2 Cisco RV042.

In your VPN setup, for Security Gateway Type, chose Dynamic IP + Email address (USER FQDN) Authentication, for the router under the NAT.

Chose IP ONLY for the one with private IP address.

The router that is NATed will try to connect to the public IP one. When they connect, the dynamic will try to authenticate with the Email you have setup. See the Email address as a password. It can be anything, as long as you configure the same one in both routers.

Other things to mention, in the Advance+ setup, you need to select:

- Agressive mode

- NAT traversal

I suggest selecting also:

- Keep-Alive

- Dead Peer Detection Interval

Good luck and have anice day

0 Helpful
Customers Also Viewed These Support Documents