IPsec pass-thru w/o NAT-T

From: ccieall@comcast.net
Date: Tue Jan 10 2006 - 02:31:01 GMT-3

• Next message: de Witt, Duane: "RE: lab11 6.1-6.5 WB2.0"
• Previous message: lim es: "Redistributing Between Classful and Classless protocols"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Dear all,
Does anyone out there know how to configure IPsec pass-thru w/o NAT-T with 3 routers? Here is my topology: r1-f0/0:r2:f0/1-r3. r2 acts as a NAT/PAT device b/t r1&r3. I can get the topology works if I replace r2 by PIX but I could not make the topology work if I replace PIX by a Cisco IOS router. Here is my r2 configuration:
r2:
int f0/1
ipnat outside
int f0/0
ipnat inside
ip nat inside source static udp 1.1.1.1 500 interface f0/1 500
ip nat inside source static esp 1.1.1.1 interface f0/1
r1 & r3:
no crypto ipsec nat-transparency udp-encapsulation
Thanks, Don

• Next message: de Witt, Duane: "RE: lab11 6.1-6.5 WB2.0"
• Previous message: lim es: "Redistributing Between Classful and Classless protocols"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Wed Feb 01 2006 - 07:45:48 GMT-3