Hi,
I do have to connect two astaro firewalls (one V6 and one V7) by an IPSec tunnel. The V7 is our Astaro and is located behind our primary internetgateway (an other linux firewall - the remote requests a astaro, but switching our primary system isn't the solution!).
I've configured a public IP on our primary firewall for NAT (and opend udp and tcp ports for IPSec and nat traversal) to the internal astaro V7.
Now the remote admin tells me, that the tunnel could not be established by the V6, because the VPN ID is the privat ip from the V7.
My general question: Is it possible to set up a site to site vpn by two different versions of astaros while one of them is behind a nating device?
If so, what are the basic requirements or traps?
Thanks a lot for any hints or tips. I could also give some more information.
This thread was automatically locked due to age.
