Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
327
Views
0
Helpful
1
Replies

PIX with IPSec tunnel and NAT on tunnel

gboshuizen
Level 1
Level 1

‎08-22-2003 06:20 AM - edited ‎02-21-2020 12:44 PM

We're using a PIX to build multiple IPSec tunnels to custommers.

Some of these custommers have overlapping IP networks.

The normal config of an IPsec tunnel is an "no_nat_acl" ACL and a statement to exclude IPSec traffic from NAT.

Is it possible to do NAT on a IPsec tunnel between two PIX firewalls?

Regards,

Godfried Boshuizen

The VisionWeb

Labels:
0 Helpful
1 Reply 1

ovt
Level 4
Level 4

‎08-27-2003 05:23 AM

Yes and No.

Yes, it is possible in general.

No, there are many corner cases. The most difficult problem is NAT'ing VPN traffic and Internet traffic simulteneously to different addresses. At least 6.3(2) is required for that, but this version is broken and deleted from the CCO.

Oleg Tipisov,

REDCENTER,

Moscow

0 Helpful
Customers Also Viewed These Support Documents