Guys I would like to ask about site to site vpn setups. I'm new to site to sites so what I'm doing is configuring a site to site link between my house and my brothers office since I'm always remoting in and fixing something. My home network consist of a 3meg cable line connected to a cisco 806 from there it goes into a dmz switch I than have a internal firewall running Astaro.
I have installed a Astaro Security Gateway 220 appliance at my brothers office. So I want to configure a site to site but I want to terminate on my internal firewall being the Astaro box. I have a support contract on my cisco 806 and 2611XM. So I run this buy cisco support they told me that it
would not work because I'm running dynamic nat on my 806 and that I need to configure static nat on the 806 basically sending all traffic back to my internal Astaro box. So I would like to ask you guys why do I need to run static nat for this to work?I thought all I had to do was allow port upd 500 and allow protocals 50 and 51 via a access list.
This thread was automatically locked due to age.
