Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1242
Views
0
Helpful
1
Replies

ASA outside to inside

satendrak
Level 1
Level 1

‎04-22-2010 04:54 PM - edited ‎03-11-2019 10:36 AM

Hi all,

I have a requirement to setup a IPSEC tunnel to allow access to remote users to a subnet on inside. The same subnet is already in use elsewhere on the inside network. My vpn tunnel terminates on the ASA (7.2) on the outside interface. I want to NAT the source address of this traffic before it goes to inside.

My ASA is:

192.168.198.138/28 (outside)|ASA|(inside) 192.168.198.36/28

The traffic coming from the tunnel is 10.2.0.0/22 going to 10.172.152.64/27. My tunnel is up and running. How can I NAT/PAT this traffic?

Is this possible:

nat (outside) 5 access-list Site_A_VPN_IN outside
global (inside) 5 10.58.200.31

access-list Site_A_VPN_IN extended permit ip 10.2.0.0 255.255.252.0 10.172.152.64 255.255.255.224

Do I need to allow this on the ACL for the outside interface?

Any help would be appreciate.

Thanks

Stan.

Labels:
0 Helpful
1 Reply 1

satendrak
Level 1
Level 1

‎04-22-2010 09:17 PM

To answer my own question, it works and access list entry was not needed.

cheers

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card