We try to establish an Intranet IPsec link between two hosts using VPN-1
SecureServer v4.1 on Sol 2.6. The network topology constraints us to
crossing an intermediate NAT box configured with 1-to-1 static NAT.
IKE phase 1 just runs smooth, and preshared keys get installed on both
sides. A telnet connection attempt gets encrypted on the tx side, the NAT
box tracks the ESP protocol, however, the rx side correctly rejects the
datagram because of its untranslated dst ip address (it's still virtual
since
the NAT box can't translate addresses inside the ESP tunnel).
Which options/tricks are available to get this config working?
Peter
================================================================================
To unsubscribe from this mailing list, please see the instructions at
http://www.checkpoint.com/services/mailing.html
================================================================================
