Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
637
Views
0
Helpful
1
Replies

NAT across Site to Site VPN between 1800 router & ASA

darrenriley5
Level 1
Level 1

‎07-22-2011 08:53 AM - edited ‎03-04-2019 01:04 PM

Hi,

I need to create a site to site VPN between a remote site (cisco 1800 router) and head office (ASA firewall). I need to NAT the source addresses of the remote user LAN addresses across the VPN tunnel. Do I do this in the normal manner by creating static NATs and specying the LAN port as the inside NAT and the Outside NAT as the interface which is configured with the public ip which is used to terminate the VPN tunnel?

Thanks

Darren

Labels:
0 Helpful
1 Reply 1

Jon Marshall
Hall of Fame
Hall of Fame

‎07-23-2011 05:04 AM

Darren

Depends on whether or not you need bi-directional access. By this i mean if the connections are initiated only from the remote end then you could use PAT rather than static NATs. If however connections can be initiated from either the remote end or the head office then yes you would need static NATs.

Either way, yes you would set it up as you describe and can use the IP configured on the outside interface. The nat inside would be the LAN interface and the nat outside would be the outside interface.

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card