Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
512
Views
0
Helpful
1
Replies

Port translation and IPSEC

gclavadetscher
Level 1
Level 1

‎08-14-2003 01:17 AM - edited ‎02-21-2020 12:43 PM

Hello,

It is possible to build a VPN tunnel between a Router 831 and a concentrator 3000 when the traffic is going accross a ADSL router using a port translation?.

What I have:

1. the Router 831 will get a dynamic extern address (from adsl router)

2. the ADSL router nat all intern address to one address (PAT, port address translation)

3. I need to split the traffic.

So on the same ADSL extern public address, I will have the IPsec traffic and the non-encripted traffic.

Is it possible and how? (L2L, Easy VPN?), Can I configure the 831 router, that he send the IKE and IPSEC traffic on tcp 10000 as a VPN client?

Thanks Gael

Labels:
0 Helpful
1 Reply 1

gclavadetscher
Level 1
Level 1

‎08-19-2003 03:00 AM

I found the solution.

Hi everybody, for people interested.

If you want to use nat overlapping (PAT), then you can use easyvpn and configure Nat-T on the concentrator (System -> Tunneling protocol -> Ipsec ->Nat-t).

It's maybe possible to create a tunnel without easyvpn when using PAT (see http://www.cisco.com/warp/public/471/vpn3k_iosdhcp.html

) but for me this solution only work with static nat and not port translation, but I may be wrong (correct me if I am).

Cheers Gael

0 Helpful
Customers Also Viewed These Support Documents