This discussion has been locked.

You can no longer post new replies to this discussion. If you have a question you can start a new discussion

ipsec on additional IP

Hi,

we have an ASG 8.305 with a External WAN Interface with a primary IP and three additional IPs.
We want some User to connect to one of the additional IPs with a ipsec Client software.
Our problem is that the ipsec connection only work with the primary IP of that interface.
Is there any solution to get ipsec working on an additional IP?

We have three RED devices which successfuly connect to an additional IP.
So is it possible for the Users making a ipsec connection to an additional IP?

Bjoern

This thread was automatically locked due to age.

Parents

0 BAlfson over 12 years ago

You could SNAT the IPsec traffic from the Additional Address, but the client would have to be configured to accept the traffic from that IP. Look in the 'Site-to-Site >> IPsec' section on the 'Remote Gateways' tab to see what would be necessary in the client; you would need a VPN ID type of "IP Address" and VPN ID of the primary address on the interface. Is that possible?

By the way, why not just use the primary address?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Reply

0 BAlfson over 12 years ago

You could SNAT the IPsec traffic from the Additional Address, but the client would have to be configured to accept the traffic from that IP. Look in the 'Site-to-Site >> IPsec' section on the 'Remote Gateways' tab to see what would be necessary in the client; you would need a VPN ID type of "IP Address" and VPN ID of the primary address on the interface. Is that possible?

By the way, why not just use the primary address?

Cheers - Bob
Cancel
Vote Up 0 Vote Down

Cancel

Children

No Data