From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security

Unlock this course with a free trial

Join today to access over 22,600 courses taught by industry experts.

NAT-T for IPsec

NAT-T for IPsec

From the course: Cisco CCNP SCOR Security (350-701) Cert Prep: 1 Security Concepts and Network Security

Start my 1-month free trial Buy for my team

NAT-T for IPsec

- [Instructor] We need to be able to describe the function of NAT Traversal or Nat-T for this exam. NAT or Network Address Translation is a way that we can convert private IP addresses to publicly roundable IP addresses and vice versa. NAT Traversal is a technique for establishing VPN connections across a device that is performing that. If we look at this simple diagram, you can see that we have a Port Address Translation happening at the firewall between these two routers with a site to site VPN between the routers. The Port Address Translation that is taking place is a type of NATs where we map multiple private IP addresses to a single public IP, and we assigned different ports. So if we have multiple internal IP addresses in the local office as we see here, these will be translated into a single global IP address with each of those addresses being assigned a unique port from a pool of available ports. The problem is with our VPN security protocols with AH and ESP, those are layer…

Contents