cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
413
Views
0
Helpful
2
Replies

Site to site vpn behind nat

sv7
Level 3
Level 3

Hi All,

I have Asa which is behind the tp link router and natting going to configure on tplink router only. Need to configure site to site vpn tunnel with private ip address on Asa (at Site A) with respect to router at site B.

Can anyone guide me or share any documentation to configure such kind of tunnel.

2 Replies 2

This is quite straight forward:

On the Router:
- Forward UDP/500 and UDP/4500 to the ASA

On the ASA behind the NAT:
- Configure everything as usual.

On the other ASA:
- Configure the peer and the tunnel group with the public IP of the other side.

For Cisco ASA vpn tunnel configuration follow this Link . Just remember for vpn-tunnel on ASA put the public IP address of the remote router.

Do you have access to the remote router? does the remote router is cisco or other vendor. as mentioned by Karsten you need to open a port on remote router (port UPD 500 and UPD 4500).

please do not forget to rate.
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: