Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
595
Views
0
Helpful
2
Replies

Single remote IP for IPSec router-to-router VPN

Go to solution
charalambos.papadopoulos
Level 1
Level 1

‎04-26-2010 03:17 AM - edited ‎02-21-2020 04:37 PM

Hi, I'm setting up a VPN to another company, and they've provided one routable IP address to be both their peer and their local internal system that we need access to.  Can I use the remote peer address in the crypto ACL?  I think they need to provide a second NAT IP for their internal system, otherwise the IPSec traffic from us destined for their peer will hit the crypto ACL.  What do you think?  Thanks!

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎04-26-2010 04:39 AM

As long as only 1 end of the peer uses the IPSec peer (terminating ip address) in the crypto ACL, that is OK. You can't have both ends as being the crypto ACL.

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Jennifer Halim
Cisco Employee
Cisco Employee

‎04-26-2010 04:39 AM

As long as only 1 end of the peer uses the IPSec peer (terminating ip address) in the crypto ACL, that is OK. You can't have both ends as being the crypto ACL.

0 Helpful

Go to solution
charalambos.papadopoulos
Level 1
Level 1
In response to Jennifer Halim

‎04-29-2010 05:21 AM

Thanks, that's what I expected.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents