This is our network . We have terminated an IPSEC VPN on Cisco asa 5505-1 as a LL backup . It is working fine and no problems reported. My requirement is that we need to nat-t another IPSEC VPN from one our partners to the CISCO ASA 5505-2 ,as shown above. I have configured a static 1-1 NAT and inbound access rules allowing isakmp,udp 4500(nat-t) and ssh from the partner IP's to the NATed IP . Also enabled crypto isakmp nat-traversal 20 and inspect ipsec-pass-thru in case NAT-t does not work in the access list.
Please see the relevant config attached. Kindly advise.Cisco ASA 5505-1 has a base license,is in routed mode and runs asa-722-k8.bin image.
I am also not able to access vnc for another static NAted IP. Please help.
Re: Cisco ASA 5505 for NAT-T as well as VPN termination
8 years 1 month ago #35145