1830939 Members
2518 Online
110017 Solutions
New Discussion

VPN question

 
SM_3
Super Advisor

VPN question

Hello

I have read on the internet that Ipsec AH (authentication Header) will work with NAT traversal using UDP port 4500.

But then some poeple state, "IPSec Header Authentication would not work through a NAT device."

What do you reckon guys?

Thanks.

2 REPLIES 2
marie-noelle jeanson_1
Trusted Contributor

Re: VPN question

Hi,

One manual for IP Filter, http://docs.hp.com/en/B9901-90014/B9901-90014.pdf says p.104 that IPSec and NAT are not compatible. If you are using HP-UX IPFilter with IPSec, do not use NAT functionality.
Then it looks like IPsec will not work with NAT.

Marie-Noelle
Tim Sanko
Trusted Contributor

Re: VPN question

Depending on which VPN in question and how it is configured, it can allow different ports through and not others. We don't allow XDMP across the VPN, but we do allow telnet.
This works with a firewall pacage and I get nauseated dealing with it...


Tim