Hi,

I need to NAT LAN range to a single IP tunnel:

this is my config:

LAN Range: 192.168.180.0/24 (Gi 0/2)

WAN: 172.21.21.208/252  (Gi 0/1)

Tunnel IP's: 192.168.226.177/252

Destination network to connect through the tunnel: 172.17.100.0/24

the tunnel is UP and I can ping 192.168.226.177 (another side of the tunnel) from LAN, but I cannot reach 172.17.100.0/24 range

this is my running config:

interface Tunnel680
ip address 192.168.226.178 255.255.255.252
ip access-group 101 in
ip nat outside
ip virtual-reassembly in
tunnel source 172.21.21.210
tunnel destination 172.17.11.30
!
interface Embedded-Service-Engine0/0
no ip address
shutdown
!
interface GigabitEthernet0/0
no ip address
shutdown
duplex auto
speed auto
!
interface GigabitEthernet0/1
ip address 172.21.21.210 255.255.255.252
ip access-group 101 in
ip virtual-reassembly in
duplex auto
speed auto
!
interface GigabitEthernet0/2

ip address 192.168.180.1 255.255.255.0

ip nat inside
ip virtual-reassembly in
duplex auto
speed auto
no mop enabled
!
ip forward-protocol nd
!
no ip http server
no ip http secure-server
!
ip nat inside source list 101 interface Tunnel680 overload
ip route 0.0.0.0 0.0.0.0 172.21.21.209
access-list 101 permit ip any any
access-list 101 permit ip 172.17.100.0 0.0.0.255 any

please help me to solve the problem