From the course: Cisco CCNP Security SCOR v1.1 (350-701) Cert Prep

Unlock this course with a free trial

Join today to access over 25,300 courses taught by industry experts.

NAT-T for IPsec

NAT-T for IPsec

From the course: Cisco CCNP Security SCOR v1.1 (350-701) Cert Prep

Start my 1-month free trial Buy for my team

NAT-T for IPsec

- [Instructor] We need to be able to describe the function of NAT Traversal or NAT-T for this exam. NAT or Network Address Translation is a way that we can convert private IP addresses to publicly routable IP addresses and vice versa. NAT Traversal is a technique for establishing VPN connections across a device that is performing NAT. If we look at this simple diagram, you can see that we have a port address translation happening at the firewall between these two routers with a site to site VPN between the routers. The port address translation that is taking place is a type of NAT where we map multiple private IP addresses to a single public IP, and we assign different ports. So if we have multiple internal IP addresses in the local office, as we see here, these will be translated into a single global IP address with each of those addresses being assigned a unique port from a pool of available ports. The problem is with our VPN security protocols with AH and ESP, those are layer three…

Contents