PAT IPSec-FW Issue from אשד אלוני on 2009-06-03 (Ccielab archives 06/2009)

From: אשד אלוני <eshedalonie_at_gmail.com>
Date: Wed, 3 Jun 2009 21:36:20 +0200

I have tried today to make PAT IPSec to a checkpoint FW, but without
succeed.

R1(192.168.1.1) ----->(192.168.1.2) R2 (80.1.1.1)

ip nat inside source static tcp 192.168.1.1 500 80.1.1.1 500
ip nat inside source static udp 192.168.1.1 500 80.1.1.1 500
ip nat inside source static ucp 192.168.1.1 4500 80.1.1.1 4500
ip nat inside source static esp 192.168.1.1 80.1.1.1

Does anyone have ever tried to configure this even without a Checkpoint FW -
could be ASA or any other FW Vender ?

Blogs and organic groups at http://www.ccie.net
Received on Wed Jun 03 2009 - 21:36:20 ART

This archive was generated by hypermail 2.2.0 : Wed Jul 01 2009 - 20:02:36 ART