Overlapping subnet VPN and static nat
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-21-2008 08:57 AM - edited 03-11-2019 04:51 AM
Hi,
IPSec tunnel is running between 2 sites.Now we need to configure static NAT for 1 IP address comes under overlapping subnet.
When we configure static nat then whole traffic is transfered to the static nat connection and my tunnel see not traffic.
Any idea how to solve this problem.We need:
1. IPSec tunnel should work under overlapping n/w
2. static will also work
We could not able to do any config changes at the other site os the tunnel .
- Labels:
-
NGFW Firewalls
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-21-2008 05:25 PM
Hi Vikas
you can use policy nat like following
lets say that if x.x.x.x in inside wants to reach y.y.y.y, it will be translated(static nat) to z.z.z.z on outside interface
access-list policy-nat permit ip x.x.x.x 255.255.255.255 y.y.y.y 255.255.255.255
static (inside,outside) z.z.z.z access-list policy-nat
Regards
