Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
482
Views
1
Helpful
3
Replies

IPsec tunnel using private ip

Vishal6
Level 1
Level 1

‎05-12-2024 08:26 AM

Hi All,

Can we create an ipsec tunnel between umbrella data center and Cisco FTD firewall using private ip ?. In my infrastructure isp is terminated on router and FTD is behind Router.

Labels:
3 Replies 3

MHM Cisco World
VIP
VIP

‎05-12-2024 08:57 AM

https://docs.umbrella.com/umbrella-user-guide/docs/configure-tunnel-with-cisco-secure-firewall

Check link and if you do static NAT in router for port ipsec udp 500/4500 it will work.

MHM

0 Helpful

brandon555hong
Level 1
Level 1

‎05-29-2024 11:06 PM - edited ‎05-30-2024 09:01 PM

Hello,

Yes, you can create an IPsec tunnel between an Umbrella data center and a Cisco FTD firewall using a private IP. Since the FTD is behind a router you need to enable NAT Traversal and configure NAT on the router to map the FTD's private IP to a public IP. This setup aa jetnet allows the Umbrella data center to communicate with the FTD. Configure the IPsec settings on both the FTD and Umbrella, ensuring the router's public IP is used as the endpoint for the tunnel.

0 Helpful

Vishal6
Level 1
Level 1
In response to brandon555hong

‎05-30-2024 12:06 AM

Can we create a policy based tunnel as ftd is behind the router or it mandatory to have a vti based tunnel. PFB attachment

Vishal6_0-1717052752958.png

 

0 Helpful
Customers Also Viewed These Support Documents