In case the tunnel is terminated on the ASA...
2011/9/8 Kingsley Charles <[email protected]> > Exempt the VPN traffic using NAT exempt. > > With regards > Kings > > > On Thu, Sep 8, 2011 at 1:48 PM, waleed ' <[email protected]> wrote: > >> >> Dear pitor , sorry for the general question I will in future , >> if there is patting for inside users on outside interface and we inside >> user need vpn on server on the outside what we have to add to config ? >> ------------------------------ >> Date: Thu, 8 Sep 2011 10:13:04 +0200 >> Subject: Re: [OSL | CCIE_Security] IPsec Through ASA >> From: [email protected] >> To: [email protected] >> CC: [email protected] >> >> >> Depends on where the traffic is originated from. >> If from the Inside, then you need IPSec pass-thru inspection enabled or >> pass ESP on the outside ACL (in inbound direction). >> If from the Outside, then you need to pass UDP/500 (or UDP/4500 if NAT is >> enabled) and ESP on the outside ACL (in inbound direction). >> >> Could you please ask more specific questions in the future? >> >> Regards, >> Piotr >> >> >> 2011/9/8 waleed ' <[email protected]> >> >> What we need to enable IPsec through ASA ? >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> >> >> >> _______________________________________________ >> For more information regarding industry leading CCIE Lab training, please >> visit www.ipexpert.com >> >> Are you a CCNP or CCIE and looking for a job? Check out >> www.PlatinumPlacement.com >> > >
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com Are you a CCNP or CCIE and looking for a job? Check out www.PlatinumPlacement.com
