This isnt a basic nat setup, it's actually 1:1. There is an external
public IP directly mapped to an internal one. On each side the remote
gateway is explicitly labeled as the public IP on each end.
This is a network to network IPSec bridge using the static
configuration, not the mobile clients.
As far as I know this should work. But I could very likely be wrong.
Thanks for the link to the FAQ, and taking the time to give me the
port assignments. I will attempt to get this working and report back.
On 9/11/06, Bjoern Euler <lists at edain dot de> wrote:
> Jonathan Romero wrote:
> > I would like to be able to do IPSEC connections with this unit, but I
> > need to tell the site admin what ports/protocols he needs to open up
> > for this to work.
> You'll need UDP Port 500 and IP Proto 50 (ESP). Depending on the NAT
> implementation on the router in front of your box you may have troubles,
> Also have a look at this:
Jonathan S. Romero