Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Join Customer Connection to register!
442
Views
0
Helpful
2
Replies
rickmccl
Beginner
Beginner
‎02-05-2013 12:36 PM
‎02-05-2013 12:36 PM

Multiple L2L VPN with overlapping remote network ranges?

I have an ASA5510, and site-to-site VPN with several remote clients. I have to add another client but their network range overlaps an existing tunnel. Both are using 172.16.0.0/16. I would like to 1-to-1 NAT them as 172.17.0.0/16.

Is it possible to perform the NAT on my device, post-decryption, or is it necessary that I have them perform the NAT at their end?

thanks,

Rick

Labels:
0 Helpful
2 REPLIES 2
rais
Rising star
Rising star
‎02-05-2013 12:52 PM
‎02-05-2013 12:52 PM

NAT happens on Cisco post-decryption. Here is a link.

HTH.

0 Helpful
rickmccl
Beginner
Beginner
In response to rais
‎02-05-2013 12:55 PM
‎02-05-2013 12:55 PM

That sounds like a No -- as it seems to lead to having 172.16/16 in SA's on two tunnels, which I'm much more confident in saying it won't work.

Policy based nat seems to revolve around IP addressing, and is not able to attach a NAT policy to a tunnel group.

0 Helpful
Latest Contents
Dynamic Routing Protocols with IPv6: Configuration, Verifica...
Created by ciscomoderator on 04-13-2021 02:39 PM
0
5
0
5
To participate in this event, please use the  button to ask your questions Dynamic Routing Protocols & IPv6 Have any questions on dynamic routing protocols with IPv6? In this event we will answer all your questions related to dynamic routing pro... view more
Living on the Edge with the Secure Cats
Created by almuench on 04-07-2021 01:34 PM
0
0
0
0
The cat's out of the bag! In October 2020, Cisco announced the Next Generation of Enterprising Routing Platforms: the Catalyst 8000 Edge Platforms Family including the Catalyst 8200, Catalyst 8300, Catalyst 8500, and Catalyst 8000V. The new family of Cats... view more
Community Live- Smart Licensing Using Policy (Routing) – A S...
Created by Cisco Moderador on 04-06-2021 06:31 AM
0
0
0
0
Community Live- Smart Licensing Using Policy (Routing) – A Simplified Licensing Approach (Live event -  Tuesday, 18 May, 2021 at 9:00 am Pacific/ 1:00 pm Eastern / 7:00 pm Paris) This event will have place on Tuesday 18th, May 2021 at 9:00 hrs PDT&nb... view more
Networking and Data Center Products Overview (Spring 2021)
Created by Kelli Glass on 03-31-2021 12:46 PM
0
0
0
0
Welcome to the overview guide that covers the latest in Cisco Networking and Data Center innovations and new product introductions. You'll find information on Intent Based Networking updates, special promotions and free trials, as well as exclusive upcom... view more
**New Episode** Cisco Champion Radio: S8|E13 Build Your IT F...
Created by aalesna on 03-30-2021 02:52 PM
0
0
0
0
Listen: https://smarturl.it/CCRS8E13 99% of organizations use certifications to make hiring decisions. The reason is simple: Cisco certifications bring valuable, measurable rewards to certified IT professionals and the organizations that employ them.... view more
Content for Community-Ad