in an NAT environement you need to encapsulete the VPN traffic into UDP or
TCP (because ESP has no port#, has protocolnumber 50).Otherwise VPN traffic
after IKE will be dropped.
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=65276&t=65239
Thanks your info.
The limitation is that the ISP only provide 1 fixed IP.
Lo Ching
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=65266&t=65239
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.ht
yes I due that type of network monthly for small bussinesses. I'll usually
put a 506 at the central office and a 501 at the remote sites.
there isn't any point of the routers at either end to NAT, let the FWs do
the NATing for everything.
scott
""Lo Ching"" wrote in message
news:[EMAIL PROTECT
3 matches
Mail list logo
