NAT-T question.

Toggle sidebar Toggle sidebar
A

am

Distinguished
Apr 10, 2004
107
0
18,680
Archived from groups: comp.dcom.vpn (More info?)

Does NAT-T needed when remote vpnpoint is behind a device doing NAT or it is needed only if the
device is not IPsec passthrough?

Sorry for newbie questions.

Alex.
 
G

Guest

Guest
Archived from groups: comp.dcom.vpn (More info?)

AM <Alex@AM.AM> writes:
> Does NAT-T needed when remote vpnpoint is behind a device doing NAT or
> it is needed only if the device is not IPsec passthrough?

If you only have one user behind the NAT box using IPsec and the NAT
box supports IPsec passthrough then you don't need NAT-T, though you
may prefer to use it depending on the quality of the IPsec passthrough
support in the NAT box.

If you have multiple users behind the same NAT box all wanting to use
IPsec then most (all?) NAT IPsec passthrough implementations will
result in one or more of the IPsec connections failing unless the
client turns on NAT-T.
 
You must log in or register to reply here.

TRENDING THREADS

Latest posts

Moderators online

Share this page

COMPANY
RESOURCES
FOLLOW
Top Bottom