Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > Cisco > VPN Concentrator (NAT'd) to Cisco 7204

Thread Tools

VPN Concentrator (NAT'd) to Cisco 7204
Posts: n/a
I'm having trouble setting up a specific scenario. I have several
Cisco VPN 3000 series Concentrators connected to a Cisco 7204 via IPSec
just fine. My problem occurs when the 3000 public IP is being NAT'd.
For example:

+------+ +----+ +------+
| 3000 |------| FW |---------------| 7204 |
+------+ +----+ +------+
Public IP: Public IP:
NAT'd on FW to:
Private IP: (not relevant)
Private IP is NAT'd to:

Based on the above, below is my non-working config on the 7204. It
works fine if the 3000 isn't being NAT'd on the public interface. Any
help would be GREATLY appreciated.

crypto isakmp policy 10
encr 3des
authentication pre-share
group 2
lifetime 28800
crypto isakmp policy 15
encr 3des
hash md5
authentication pre-share
lifetime 28800
crypto isakmp key vpnkey address
crypto ipsec transform-set c3k-def esp-3des esp-sha-hmac
crypto map to-cust 22221 ipsec-isakmp
description to C3KMYVPN
set peer
set transform-set c3k-def
set pfs group1
match address C3KMYVPN
ip access-list extended C3KMYVPN
permit ip host

Reply With Quote
Posts: n/a
A week later and I'm still unable to figure this out. From the lack of
response, I assume this isn't easy?

Reply With Quote

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off

Similar Threads
Thread Thread Starter Forum Replies Last Post
USB Keys and Cisco VPN Concentrator / Cisco VPN Client ? TechGuy Cisco 3 02-05-2009 01:05 PM
cisco vpn connection to vpn concentrator 3000 not passing web traffic Cisco 1 08-22-2006 02:05 PM
W2K vpn client to Cisco 3005 VPN concentrator Cisco 4 06-26-2005 09:29 PM
VPN Connection Problems between Cisco PIX 506E and Cisco VPN Concentrator 3005 Kai Cisco 0 02-15-2005 02:03 PM
VPN concentrator/Cisco VPN client and UDP mikester Cisco 4 02-08-2004 10:50 PM