Quantcast
Channel: All SRX Services Gateway posts
Viewing all articles
Browse latest Browse all 17645

Re: L2TP/IPSEC VPN behind static NAT not working

March 13, 2016, 10:13 pm
$
0
0

 

I'm assuming that your srx is public facing router, with following configuration

 

 

security {
    nat {
        source {
            address-persistent;
        }
        static {
             rule-set bt {
                from interface pp0.0;
                    rule vpn {          
                        match {                 
                            destination-address x.x.x.147/32;
                        }                       
                        then {                  
                            static-nat {                
                                prefix {                        
                                       10.0.0.201/32;                  
                                }                               
                            }                           
                        }                       
                    }                   
                }               
            }           
        }       
    }

 

 

please do remember that static nat is itself persistant, also the persistant snipper above is for source nat so not useful at all.

 

Can you share the output of show security nat  static rule all and see if counters are incremented ?

if yes, then srx configs looks good.

 

Now check with the router on which your tunnel is terminated, since NAT is now into play, this is not usual ipsec tunnel port 500 setup.

 

Need to varify if NAT-T is enable on your dratetk software.

 

 

Search
Viewing all articles
Browse latest Browse all 17645

Trending Articles

Who died from the T.V. Show pawn stars ?? #pawnstars

September 5, 2011, 2:31 pm

Practice Sheet of Right form of verbs for HSC Students

September 22, 2019, 11:40 pm

Yesenia Carballido Arrested by Miami-Dade County Corrections on Jan 03, 2020

January 3, 2020, 12:00 am

GR EXCLUSIVE: Rising-Star Bonanno Mobster Ernie Aiello’s Role As Street Boss...

April 5, 2025, 9:02 pm

Rajasthan Board 10th Result 2016 Roll No wise & Name Wise

August 20, 2016, 5:13 pm

Dangal (2016) Full Tamil Dubbed Movie Online Free

December 24, 2016, 8:35 pm

Daru and Sharab Status for Sharabi Friends in Hindi, Punjabi

March 17, 2020, 5:00 am

MXQ PRO+ S905X 2GB/16GB 4K TV BOX UNROOTED FIRMWARE 20180201

May 24, 2018, 2:49 am

CSC GUIDELINES IN PHILIPPINE PASSPORT SIZE ID PHOTO AS DEPED REQUIREMENT

April 12, 2017, 3:35 am

[GET] Ayesha Santos – Powerhouse Portfolio ($359.00)

May 17, 2025, 12:45 am

SnapTube - YouTube Downloader HD Video Final v4.48.0.4482310 [Mod]

September 12, 2018, 10:55 am

Confused about Ultrascenery 2

May 29, 2024, 6:30 am

Mp3 Download: Mmatema Moremi - Ke Lerato

December 6, 2017, 6:52 am

New Malayalam kambi Audio Talk Sussiyude cycle paditham

August 13, 2014, 8:45 am

Office 365: Auto-Expanding Archives FAQ

April 9, 2018, 9:23 am

Portable Adobe Premiere Pro CC 2015 v9.2.0.41 (64-bit)

January 28, 2016, 12:07 pm

Field Hockey Tactics and Strategies Set

November 14, 2015, 10:00 pm

Inception 2010 Hindi Dual Audio 650MB BRRip 720p ESubs HEVC

December 27, 2016, 4:23 pm

Karimnagar District Police Office Mobile Numbers List in Telangana State

April 13, 2017, 3:10 am

NCERT Solutions for Class 9th Sanskrit Chapter 3 पाथेयम्

December 22, 2016, 3:50 am
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>