Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
318
Views
0
Helpful
1
Replies

Nat

Go to solution
kolawole1
Level 1
Level 1

‎10-18-2008 09:56 AM - edited ‎03-03-2019 11:59 PM

While configuring easy vpn in nem mode with asa 5510 and a 1800 SERIES router,it has been said that intersting traffic should not be natted.How does this traffic goes to the internet with private ip addressing if the 2 sites are link by internet ?

What is this access list role?

access-group OUT in interface outside

example: See file attached

Labels:
Preview file
27 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎10-19-2008 05:53 AM

Hello Kouferidji,

the scenario could describe the need to avoid to NAT traffic that has to go trough the IPSec tunnel:

LAN to LAN traffic has to travel inside ipsec packets and don't need to be natted

when accessing internet it has to be natted as you observe

access-list no-nat extended permit ip 10.10.10.0 255.255.255.0 192.168.10.0 255.255.255.0

net 192.168.10.0 is the lan behind the 871 see the drawing

Hope to help

Giuseppe

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Giuseppe Larosa
Hall of Fame
Hall of Fame

‎10-19-2008 05:53 AM

Hello Kouferidji,

the scenario could describe the need to avoid to NAT traffic that has to go trough the IPSec tunnel:

LAN to LAN traffic has to travel inside ipsec packets and don't need to be natted

when accessing internet it has to be natted as you observe

access-list no-nat extended permit ip 10.10.10.0 255.255.255.0 192.168.10.0 255.255.255.0

net 192.168.10.0 is the lan behind the 871 see the drawing

Hope to help

Giuseppe

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card