Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
334
Views
0
Helpful
1
Replies

Public IP to internal over L2L and through a NAT?

azore2007
Level 1
Level 1

‎05-26-2008 02:42 AM - edited ‎03-11-2019 05:49 AM

Hi!

Got a tricky situation right now and need some additional brainpower.

We have a PIX515E running 7.2.2.

We have a L2L VPN tunnel to another company where we have our servers.

This works good.

Now, a server at the other company site needs a public IP and has to go through our own PIX and over the L2L tunnel.

Currently we are NAT'ing all traffic to the other company over the L2L. This works good.

Our server has the IP: 10.1.1.5, and we are giving it a public ip (fake) 192.1.1.5 in my own PIX

How shall I do the static?

Will it be : static (inside,outside) 192.1.1.5 10.1.1.5 netmask 255.255.255.255 ?

Considering that the our server 10.1.1.5 is really "outside" from my PIX point of view?

How shall I turn the traffic around and enter the L2L and get NAT'ed towards the server?

I previously made it possible to VPN to our PIX and then be able to work against the servers with NAT'ing.

Then I just had to add another NAT for (outside) and it worked. I've even tried adding another ACL line and permitting any traffic towards 10.1.1.5. Not working tho

Would really appreciate some help :)

Thanks

Labels:
0 Helpful
1 Reply 1

wong34539
Level 6
Level 6

‎05-30-2008 06:40 AM

Go through this NAT and Access Lists (Cisco PIX 500 Series Security Appliances Configuration guide) for your configuration . It will help for the configuration.

http://cisco.com/en/US/products/hw/vpndevc/ps2030/prod_configuration_examples_list.html

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card