IP Security Through Network Address Translation Support http://www.cisco.com/univercd/cc/td/doc/product/access/acs_fix/827/827rl nts/820feat.htm
I think Linksys just has an option for a checkmark on "IPSec through NAT". -- Lidiya White -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Alex Lee Sent: Wednesday, June 26, 2002 8:20 AM To: [EMAIL PROTECTED] Subject: Re: Cisco VPN client and NAT [7:47430] So how does the Linksys or cisco 800 handles the IPSec thru PAT then ? Thanks. Alex Lee ""Lidiya White"" wrote in message news:[EMAIL PROTECTED]... > PIX doesn't support IPSec transparency/IPSec over TCP. Concentrators do. > It all depends on the device that is between your client and PIX, that > is doing PAT. > IPSec uses ESP protocol, that doesn't have ports, so how can you perform > PAT (port address translation) for a protocol that doesn't understand > port concept? > Some routers can pass IPSec through the PAT (like Linksys, Cisco 800). > So if the router/device that is doing PAT is IPSec aware, then you > should be able to pass IPSec through. If not, then you have to make sure > that one-to-one address translation happens for your VPN clients, not > one-to-many (PAT)... > Hope this helps... Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=47529&t=47430 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]