Hello,
I wonder if anyone can help. I currently have 4 external SDSL lines, each coming their own SHDSL WIC - I am using two 2801 routers each with 2 SDSL cards in. I have 1 VPN conentrator that is located on a Permiter network that is in between the edge routers and the Firewall.
Currently the VPN concentrator has its public address (from the perimeter range) statically NATed on one of the SDSL interfaces so it has a legal external IP address.
I now need to be able to assign more legal IP addresses to the Concentrator address which will be coming in via the other SDSL lines. So for example, Client A uses a public address of 1.1.1.1 to initiate VPN connections, and Client B uses 5.5.5.5. This will enable me to allocate an SDSL line for each client.
Can I achieve this using PAT, so if I were to forward the necessary ports from one of the SDSL Ranges to the VPN concentrator, will it respond accordingly? Also, If I do this for an IP address on each of the SDSL lines, will it have the effect of allowing multiple connections to the concentrator coming in on different lines.
What ports do I need to 'forward' from the edge routers in order for ISAKMP and IPsec to work correctly.
Any pointers would be very much appreciated!
Jo