Learn how to a build a cloud-first strategyRegister Now


Cisco 5505 VPN Configuration

Posted on 2012-08-13
Medium Priority
Last Modified: 2012-09-10
I have a client with a single Static IP Address that exposes their Windows 2008 SBS server to the Internet for Email and OWA. They want to install a Cisco 5505 to allow for VPN access. Typically, when I set them up, I have the Cisco 5505 Outside Interface have an IP address that the VPN clients connect to. I then have another IP address that is routed through the Cisco Router as a Static Route to expose the SMTP and OWA services.

This client only has one IP address and I'm not sure if that can be done and what the configuration should be.

Question by:Joseph_Barron
LVL 18

Assisted Solution

fgasimzade earned 668 total points
ID: 38290787
I believe you can use a single address for VPN and for Static NAT (smtp and owa)
LVL 37

Assisted Solution

ArneLovius earned 664 total points
ID: 38290971
yes, you can use a single address for NAT to an SBS server and for inbound IPSec VPN, if you want to use AnyConnect with its default settings, you would require an additional IP address, but it is possible to run AnyConnect on a different port.
LVL 28

Accepted Solution

asavener earned 668 total points
ID: 38291903
You need to use port address translation for SMTP and OWA instead of network address translation.  Basically, you only translate the individual ports.

Example:  static (inside,outside) tcp <outisde_IP> 25 <inside_IP> 25 netmask

The problem you might run into is that OWA and SSL VPN clients will want to use the same port (443).

You can change the port either service, or you can use the Cisco IPSec VPN client (this client is being deprecated, but it is still available for download).

Featured Post

Upgrade your Question Security!

Add Premium security features to your question to ensure its privacy or anonymity. Learn more about your ability to control Question Security today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Concerto Cloud Services, a provider of fully managed private, public and hybrid cloud solutions, announced today it was named to the 20 Coolest Cloud Infrastructure Vendors Of The 2017 Cloud  (http://www.concertocloud.com/about/in-the-news/2017/02/0…
Will you be ready when the clock on GDPR compliance runs out? Is GDPR even something you need to worry about? Find out more about the upcoming regulation changes and download our comprehensive GDPR checklist today !
Windows 10 is mostly good. However the one thing that annoys me is how many clicks you have to do to dial a VPN connection. You have to go to settings from the start menu, (2 clicks), Network and Internet (1 click), Click VPN (another click) then fi…
Both in life and business – not all partnerships are created equal. Spend 30 short minutes with us to learn:   • Key questions to ask when considering a partnership to accelerate your business into the cloud • Pitfalls and mistakes other partners…
Suggested Courses

810 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question