Exempt the VPN traffic using NAT exempt. With regards Kings
On Thu, Sep 8, 2011 at 1:48 PM, waleed ' <[email protected]> wrote: > > Dear pitor , sorry for the general question I will in future , > if there is patting for inside users on outside interface and we inside > user need vpn on server on the outside what we have to add to config ? > ------------------------------ > Date: Thu, 8 Sep 2011 10:13:04 +0200 > Subject: Re: [OSL | CCIE_Security] IPsec Through ASA > From: [email protected] > To: [email protected] > CC: [email protected] > > > Depends on where the traffic is originated from. > If from the Inside, then you need IPSec pass-thru inspection enabled or > pass ESP on the outside ACL (in inbound direction). > If from the Outside, then you need to pass UDP/500 (or UDP/4500 if NAT is > enabled) and ESP on the outside ACL (in inbound direction). > > Could you please ask more specific questions in the future? > > Regards, > Piotr > > > 2011/9/8 waleed ' <[email protected]> > > What we need to enable IPsec through ASA ? > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com > > > > _______________________________________________ > For more information regarding industry leading CCIE Lab training, please > visit www.ipexpert.com > > Are you a CCNP or CCIE and looking for a job? Check out > www.PlatinumPlacement.com >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
