VPN Concentrator (NAT'd) to Cisco 7204

Discussion in 'Cisco' started by jimnl69@hotmail.com, Sep 22, 2005.

  1. Guest

    I'm having trouble setting up a specific scenario. I have several
    Cisco VPN 3000 series Concentrators connected to a Cisco 7204 via IPSec
    just fine. My problem occurs when the 3000 public IP is being NAT'd.
    For example:

    +------+ +----+ +------+
    | 3000 |------| FW |---------------| 7204 |
    +------+ +----+ +------+
    Public IP: 10.10.10.1 Public IP: 164.6.6.1
    NAT'd on FW to: 129.22.22.1
    Private IP: 192.168.0.1 (not relevant)
    Private IP is NAT'd to: 172.31.1.17

    Based on the above, below is my non-working config on the 7204. It
    works fine if the 3000 isn't being NAT'd on the public interface. Any
    help would be GREATLY appreciated.

    crypto isakmp policy 10
    encr 3des
    authentication pre-share
    group 2
    lifetime 28800
    !
    crypto isakmp policy 15
    encr 3des
    hash md5
    authentication pre-share
    lifetime 28800
    crypto isakmp key vpnkey address 129.22.22.1
    crypto ipsec transform-set c3k-def esp-3des esp-sha-hmac
    crypto map to-cust 22221 ipsec-isakmp
    description to C3KMYVPN
    set peer 129.22.22.1
    set transform-set c3k-def
    set pfs group1
    match address C3KMYVPN
    ip access-list extended C3KMYVPN
    permit ip 129.38.2.192 0.0.0.63 host 172.31.1.17
     
    , Sep 22, 2005
    #1
    1. Advertising

  2. Guest

    A week later and I'm still unable to figure this out. From the lack of
    response, I assume this isn't easy?
     
    , Sep 27, 2005
    #2
    1. Advertising

Want to reply to this thread or ask your own question?

It takes just 2 minutes to sign up (and it's free!). Just click the sign up button to choose a username and then you can ask your own questions on the forum.
Similar Threads
  1. filip
    Replies:
    2
    Views:
    2,416
    filip
    Nov 20, 2003
  2. Dave Roekle
    Replies:
    1
    Views:
    1,483
    ccosta
    Oct 28, 2008
  3. John Ireland
    Replies:
    4
    Views:
    11,658
    kirandeepmittal
    Nov 23, 2010
  4. Kai
    Replies:
    0
    Views:
    7,684
  5. TechGuy
    Replies:
    3
    Views:
    6,020
    GizmoTech
    Feb 5, 2009
Loading...

Share This Page