NAT-T over IPSec Question

From: Lab Rat #109385382 (techlist01@gmail.com)
Date: Sat Nov 25 2006 - 21:17:47 ART

• Next message: Michael Zuo: "what is "peer neighbor-route""
• Previous message: Ivan: "Re: OSPF: distribute-list route-map"
• Next in thread: Kal Han: "Re: NAT-T over IPSec Question"
• Maybe reply: Kal Han: "Re: NAT-T over IPSec Question"
• Maybe reply: Petr Lapukhov: "Re: NAT-T over IPSec Question"
• Maybe reply: Lab Rat #109385382: "RE: NAT-T over IPSec Question"
• Maybe reply: Petr Lapukhov: "Re: NAT-T over IPSec Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Here's my scenario:

ROUTER1 (f0 - 1.1.1.1) ------ (out - 1.1.1.2) PIX (in - 2.2.2.2) ------
(f0 - 2.2.2.1) ROUTER2

If I'm doing an L2L IPSec tunnel between the two routers through a PIX (with
ROUTER2 translated via the "static" command on the PIX), does this
automatically invoke NAT-T?

If so, how can I verify this? By UDP 4500 requests coming into the PIX?

If not, when does NAT-T apply to a static NAT scenario? I know you have to
enable NAT-T when using PAT, but what about static NAT?

Any help would be much appreciated.

Thanks,

Ed

• Next message: Michael Zuo: "what is "peer neighbor-route""
• Previous message: Ivan: "Re: OSPF: distribute-list route-map"
• Next in thread: Kal Han: "Re: NAT-T over IPSec Question"
• Maybe reply: Kal Han: "Re: NAT-T over IPSec Question"
• Maybe reply: Petr Lapukhov: "Re: NAT-T over IPSec Question"
• Maybe reply: Lab Rat #109385382: "RE: NAT-T over IPSec Question"
• Maybe reply: Petr Lapukhov: "Re: NAT-T over IPSec Question"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:48 ART