Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1260
Views
7
Helpful
2
Replies

CSCvm78941 - ENH Ability to configure NAT for VTI interface

bcp618
Level 1
Level 1

‎02-14-2020 08:35 AM - edited ‎02-14-2020 12:10 PM

Has anyone found a better work around than switching to an IPSEC solution? The type of setup I have requires BGP and I can't lose that functionality. These sites need internet access and the only way to include traffic sourced from the VTI and out to the internet is to perform an any,outside global nat to include the VTI.

7 people had this problem
Labels:
2 Replies 2

bspencer
Level 1
Level 1

‎02-10-2023 02:51 PM

I saw this referenced in another forum/article. The suggested workaround is to set your NAT destination interface to ANY.

nat (if-name, ANY) 

This resolved my issue with VTI tunnels utilizing BGP and I was able to access resources on the other side. 

don.cortell@hinocanada.com
Level 1
Level 1
In response to bspencer

‎09-21-2023 03:42 PM

Thanks for posting this...fixed my issue immediately upon deployment.  Saved me several more hours of work! 

Customers Also Viewed These Support Documents