I have been racking my brain thinking of how to make this work. What would you do in this scenario? How would you make this work?
I'm trying to setup an IPsec tunnel for a client. We have a pretty simple setup on our end but the vendor, not so much. I can receive ICMP from the vendors remote subnet(which is a public IP) but it doesn't make it to the internal host. I think this is because its Public IP.
on our end we have 108.x.x.x as the listening interface and 172.x.x.x/32 as the internal host
On the vendors end(Cisco ASA) they have 204.x.x.x GW Address and 205.x.x.x Remote subnet that they are NATing to a 10.x.x.x/32 address.
so in the Tunnel General Settings (I have this setup as a site to site)
Local gateway:
Listening interface = Port1 - 108.x.x.x
Local ID type = IP address
Local ID = 108.x.x.x
Local Subnet = 172.x.x.x/32
Remote gateway:
Gateway Address = Port1 - 204.x.x.x
Remote ID type = IP address
Remote ID = 204.x.x.x
Remote Subnet = 205.x.x.x/32
Many Thanks for your time...
This thread was automatically locked due to age.
