On Thu, 2004-11-04 at 11:07, Payal Rathod wrote: > I use simple masquerading to allow my windows clients to browse the > net. But for one particular machine I need to connect it to VPN of > my client abroad. Now, the tech people at their end told me not > to nat that machine as nating would destroy the VPN part. How do I do that? > The machine IP address is 192.168.10.15. If they are using IPsec for the VPN you generally can't use it behind NAT and you have to set it up to work from the device that has the public address. However there is a new standard for NAT traversal for IPsec and a recent Windows update adds it for win2k and XP. I don't know if it needs additional support at the NAT gateway or if you need matching versions at both ends, though. --- Les Mikesell les@xxxxxxxxxxxxxxxx
