IPSec vs. Nat for VPN Problem

Saravana Ram Torx at TM.NET.MY
Fri Jan 14 08:33:34 EST 2000


> 1) One can not create an end-to-end  VPN solution between two large
> networks
> that uses NAT.

Yes you can. You could terminate your IPSec tunnels at your firewall/NAT
box. Or, you could place your IPSec router between your internal network and
your WAN links, parallel to your firewall. The later solution could pose a
security headache, though, since you'd then have to enterences to your
network that needs to be secured and monitored.

VPN is sponsored by SecurityFocus.COM




More information about the VPN mailing list