Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
269
Views
0
Helpful
1
Replies

PAT/NAT over IPSec

rpaolet
Level 1
Level 1

‎06-10-2004 02:29 PM - edited ‎02-21-2020 01:11 PM

Hello,

i'd like to make a site-to-site with PIX 515 and IOS 6.3(3) but i'd like to use the PAT for my private network.

I use the acl for mark the traffic into the tunnel, but the other site the traffic match the acl but doesn't come into the tunnel.

Can anyone help me??

Regards

Roberto

Labels:
0 Helpful
1 Reply 1

slaterc
Level 1
Level 1

‎06-14-2004 12:34 AM

You may need to configure one end of the tunnel as an EzVPN server and the other end as and EzVPN client.

I think this is true because I know that the Cisco VPN client behind PAT can connect to a PIX. But in this scenario you need to do:

isakmp nat-traversal

on the PIX.

0 Helpful
Customers Also Viewed These Support Documents