Monday, May 11, 2015

Site to Site VPN NAT Traversal (simple Lab, Cisco Systems alternative)





Based on the two first post


Problem:
Often we establish VPN site to site on the internet using public IPs as the tunnel source and destination, but if one of the nodes do not have public IP from the ISP?
In these cases we can use tools SSL VPN like Teamviewer, Logmein or other, but if one side we have equipment such as PLC, CCTV systems or other we must seek alternatives, for example the question below.


Elements of this laboratory:
- Host computer capable to virtualize.
- GNS3
- - 04 routers running Cisco IOS K9 (c2691-adventerprisek9-mz.124-15.T14)
- Oracle VirtualBox
- - 02 guests


Below the configuration of each router:


main_branch router config




internet router config




front_nat_network router config




remote_branch router config