[joeri]

Hi,

So this is about connecting directly with an L2TP client towards the firewall. How does the FW-1 behave with L2TP passthrough and HIDE NAT ?

Have following problem:

Internal Network (RFC1918) connects to external VPN GW, and passes through FW-1 NG AI R55.

- tested with STATIC NAT : works (on host to host mapping off course)
- tested with HIDE NAT : doesn't work (hiding internal network behind 1 external address).

What I see with fw monitor and HIDE NAT, is that all packets are flowing OK towards destination, BUT returning traffic is only coming to the external NAT address, and FW-1 doesn't translate the external address to internal one.

Tested also with enabling NAT Traversal on FW object, doesn't resolve it.

Does R55 support L2TP passthrough over hide NAT ?
If not, does R60 - 61 or 62 ?

(funny thing, it works through my 50$ router, and wouldn't work on a $$$$ FW-1 ?)

Any feedback welcome, thanks !