Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

VPN access through NAT

Status
Not open for further replies.
mufka

mufka

ISP
Dec 18, 2000
587
US
I have a Cisco 1601R that is connected through S1 to a T1. I have NAT setup on the router. Everything works ok except access from the internat network to VPNs on the outside. Is there some protocol I have to allow specifically. My access-list permits all.

 
Sort by date Sort by votes
It looks like the VPN I'm accessing (Raptor) uses IP 50 and IP 51 and UDP 500. Can I allow these through the NAT?

Thanks for any help.

 
Upvote 0 Downvote
Hi.
VPN doesn't interfare with NAT if your tunnel har S1 address as source address. You can apply inbound access-list like this
permit gre host <T1 addr> host <S1 addr>
permit udp host <T1 addr> eq 500 host <S1 addr> eq 500
adn outbound access-list like this
permit gre host <S1 addr> host <T1 addr>
permit udp host <S1 addr> eq 500 host <T1 addr> eq 500
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

quazimotto
  • Locked
  • Question
Cisco ASA_5505 VPN to Juniper_SRX210 VPN IS UP_ No Traffic!!!!!!
Replies
0
Views
68
quazimotto
quazimotto
bfordz
  • Locked
  • Question
new help on setting up third party VoIP phones through Catalyst 2960x switch
Replies
0
Views
103
bfordz
bfordz
steel_bender
  • Locked
  • Question
Allow HTTPS TCP Traffic through ASA5525
Replies
1
Views
109
Mogles49
Mogles49
CDIV
  • Locked
  • Question
Use uplink port as access port 2960 1
Replies
9
Views
293
CDIV
CDIV
CDIV
  • Locked
  • Question
How do I enable SSH access in 2960x 1
Replies
4
Views
476
iggsterman
iggsterman

Part and Inventory Search

Sponsor

Back
Top