Show Posts
1
General Discussion / [SOLVED] IPSEC NAT/BINAT
« on: July 14, 2015, 01:29:38 pm »
Hi,
I'm just trying to setup an IPSEC VPN with NAT before IPSEC since I need to change the source address. As far as I understood is that I can use the NAT/BINAT setting in phase2 to get exactly what I want, but unfortunately its not working. So I hope that someone can help me to figure out whats wrong.
LAN: 192.168.1.0/24
NAT/BINAT 192.168.14.1/32
Remote: 10.x.x.12
My problem is that I got no SPD rule if the tunnel came up. If I change the setting to NAT/BINAT: 192.168.14.0/24 I got SPD rules but since I need to connect from an specific IP this wont work.
Furthermore I see no traffic going through the IPSEC tunnel at all and no errors anywhere.
Do I have to configure additional NAT rule or routes or anything else?
The phase1 and phase2 setting are correct since I can connect with racoon from another host with exactly the same settings.
Any help is appreciated.
regards
stefan
I'm just trying to setup an IPSEC VPN with NAT before IPSEC since I need to change the source address. As far as I understood is that I can use the NAT/BINAT setting in phase2 to get exactly what I want, but unfortunately its not working. So I hope that someone can help me to figure out whats wrong.
LAN: 192.168.1.0/24
NAT/BINAT 192.168.14.1/32
Remote: 10.x.x.12
My problem is that I got no SPD rule if the tunnel came up. If I change the setting to NAT/BINAT: 192.168.14.0/24 I got SPD rules but since I need to connect from an specific IP this wont work.
Furthermore I see no traffic going through the IPSEC tunnel at all and no errors anywhere.
Do I have to configure additional NAT rule or routes or anything else?
The phase1 and phase2 setting are correct since I can connect with racoon from another host with exactly the same settings.
Any help is appreciated.
regards
stefan