The Cisco 500x series does this also. As long as the application server on the 'server' end doesn't need to send UDP packets back to the client there are no problems with NAT transparency.
Daniel -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Kent Hundley Sent: Tuesday, November 27, 2001 12:40 AM To: [EMAIL PROTECTED]; [EMAIL PROTECTED] Subject: RE:ISPs that don't allow IPSEC protocol thru Just use a VPN product that supports "NAT transparency", essentially wrapping a extra UDP header around the IPSec packet. This is designed so that users can use NAT behind NATing gateways, but it will effectively prevent any ISP from trying to filter out IPSec traffic. The Nortel contivity and Cisco Altiga support this option, there are probably others as well. Regards, Kent ---------------------------------------------------------------------------- ----------------------- Does anyone know where I can find a list of ISP's that DOESN'T let the IPSEC protocol thru? The reason I ask is that my users are asking who they can use for VPN's and who they can't. I am working for a global company, so I can't just check with the local ISP's, cause we have workers all over the world. Thanks in advance for your help _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls _______________________________________________ Firewalls mailing list [EMAIL PROTECTED] http://lists.gnac.net/mailman/listinfo/firewalls
