We have a business partner with their own separate internal network structure and address block. This partner sends packets to us which we advance on to our clients through various VPN tunnels and then back through us to our partner in response from the clients.
We're looking to keep our partner's source addresses out of the equation and make it appear as though all packets are originating from our own internal address space when they're received by our clients. But we obviously also need packets to be returned through the exact same route back to our partner. Is there any kind of translation we can build or relationship we can create between our partner's addresses and our own to allow this?
And if so, will there be any issues between our firewall and the clients' firewalls as far as packets being blocked because their source addresses have been changed or between our firewalls and the partner's firewalls on the way back?
I did a bad job of framing the question because neither the partner nor the client are to have knowledge of the other's address space:
So let's just say a user at Partner has source IP of 10.0.0.1, destination IP of 172.22.0.1 (our internal address) and a user at Client will send back source IP of 192.168.0.1, destination IP of 172.22.1.1 (our internal address).
I'm trying to figure out if there is a way for us to associate/translate 172.22.0.1 with 192.168.0.1 when we get the packet from Partner so we can send it to Client, and then vice versa to associate/translate 172.22.1.1 with 10.0.0.1 when we get it from Client to send it back to Partner. Kind of like we're a middle-man, IP spoofing liason between the two.
I hope that makes more sense, it's probably not possible anyway.
Agile Networking with Cloud-managed IT [Meraki The Future is here] Cisco Meraki The Future Is Here: Agile Networking With Cloud-managed IT Your customer’s employees are in hybrid workstyle from home, the road, and the office and IT teams need t...
1. Smart Licensing
1.1. What is Smart Licensing?
A. Cisco Smart Licensing is a flexible licensing model that provides you with an easier, faster, and more consistent way to purchase and manage software across the Cisco portfolio and across your orga...
Cisco DNA - Cisco SD-WAN: Connect to any cloud, anywhere, securely Cisco offers on-prem and cloud-managed WAN edge solutions to meet these new demands. Connect any user to any application with integrated capabilities for multicloud, security, ...
Join us for this virtual event as cloud providers, integrators, ecosystem technology partners and customers discuss what tomorrow's cloud will be and what you need to know to prepare. Get ready to hear about innovations for faster operations, mult...
Let´s talk about spanning-treeLeave your comment in english and in your own language.------------------------------------------------Vamos falar sobre spanning-tree Deixe seu comentário em inglês e no seu idioma.