Cisco’s NAT-T broke?
Well before I tried my VPN stuff over the Internet, I set up a little fake internet in my house. It seems that for whatever reason the Cisco 831′s are not using NAT-T (NAT with Transperency). See if you are going to be running an IPSec tunnel you can’t have it behind a NAT because the NAT corrupts the IP headers and therefore the VPN server does not like it. But the Cisco 831′s are supposed to be able to detect if their is a NAT between the client and the server and if there is one, it changes how the IPSec is handled so that it works from behind the NAT. But right now the only thing I get is that the client is DOWN and trying to connect to the server, but I don’t see any traffic at the moment. So I am going to have to talk to Cisco and get some sniffer traces to see what is going on.
