Firewall Wizards mailing list archives

Re: Pix to Pix VPN IPSec w/ PAT

From: Mike Hoskins <mike () adept org>
Date: Mon, 24 Mar 2003 13:48:49 -0800 (PST)

Paul Matuszewski wrote:

Is it possible to perform a CISCO pix501 to pix501 VPN w/ IPSec while
still utilizing PAT.  The scenario is = Business Cable Modem to
Business Cable Modem... thoughts?

David Zbonski wrote:

I know you can reserve static addresses to use, so that you can do PAT
for other clients and still do IPSEC with a different address.  You will
need 2 (or more) IP addresses from your cable modem provider


If he has IPs to use as the IPSEC peers, it's as easy as:

http://www.cisco.com/warp/public/110/38.html

But it sounds like he only has the global/PAT addresses...  Maybe
something here will help until your rep gets back to you (long URL):

http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Hardware:PIX&s=Software_Configuration#Software_Samples_and_Tips

_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Pix to Pix VPN IPSec w/ PAT Paul Matuszewski (Mar 24)
- Re: Pix to Pix VPN IPSec w/ PAT John Adams (Mar 24)
- Re: Pix to Pix VPN IPSec w/ PAT Dave Rinker (Mar 24)
- <Possible follow-ups>
- Re: Pix to Pix VPN IPSec w/ PAT David Zbonski (Mar 24)
  - RE: Pix to Pix VPN IPSec w/ PAT Brian A Kee (Mar 24)
- RE: Pix to Pix VPN IPSec w/ PAT Justin C. Laporte (Mar 24)
- Re: Pix to Pix VPN IPSec w/ PAT Mike Hoskins (Mar 24)