<div>
Exactly what Donboo said.<br />
<br />
With NAT you need to enable NAT-T (Nat traversal).<br />
Traffic is send over UDP port 500/4500.<br />
IPSec can then travel over NAT...
</div>


Exactly what Donboo said.

With NAT you need to enable NAT-T (Nat traversal).
Traffic is send over UDP port 500/4500.
IPSec can then travel over NAT...

<div>
<div class="content wysiwyg-content">
I need to setup a site to site VPN between two location, one of the locations has my VPN appliance and ASA 5505 NAT-ed behind the ISP router<br />
<br />
ISP----NAT-Router-----ASA5<wbr />505----LAN<wbr /><br />
<br />
The NAT is a one to many NAT.<br />
The Site to Site VPN will be an IPSEC vpn.<br />
<br />
My questions is can i setup the point to point in these conditions? i'm pretty sure i will need to setup some port address translations if it can work, the question is which ports will i need?<br />
<br />
Thanks
</div>
</div>


I need to setup a site to site VPN between two location, one of the locations has my VPN appliance and ASA 5505 NAT-ed behind the ISP router

ISP----NAT-Router-----ASA5505----LAN

The NAT is a one to many NAT.
The Site to Site VPN will be an IPSEC vpn.

My questions is can i setup the point to point in these conditions? i'm pretty sure i will need to setup some port address translations if it can work, the question is which ports will i need?

Thanks

Site to Site VPN behind NAT

A virtual private network (VPN) is a network that uses a public telecommunication infrastructure, such as the Internet, to provide remote offices or travelling users access to a central organizational network securely. VPNs encapsulate data transfers using secure cryptographic methods and other security mechanisms to ensure that only authorized users can access the network and that the data cannot be intercepted.