Firewall Wizards mailing list archives

Re: Site-to-Site VPN Gateway behind NAT device

From: Rob Hughes <rob () robhughes com>
Date: Sun, 27 Mar 2005 07:55:31 -0600

On Tue, 2005-03-22 at 22:33 -0800, Nick Brandson wrote:

Dear guru,

Does anyone try build site-to-site VPN with one
gateway behind a NAT device (like a router or a load
balancer)?

Both gateways are using NGAI R55 on SecurePlatform.



The only way to do this with CP is when a single manager controls all
the VPNs and nat'ing. Since you can't disable AH, that'll cause the VPN
to barf when you NAT one of the end points.

Rob
_______________________________________________
firewall-wizards mailing list
firewall-wizards () honor icsalabs com
http://honor.icsalabs.com/mailman/listinfo/firewall-wizards

Current thread:

Site-to-Site VPN Gateway behind NAT device Nick Brandson (Mar 24)
- Re: Site-to-Site VPN Gateway behind NAT device Rob Hughes (Mar 30)