ā04-01-2024 04:46 AM
Hi everyone,
I am having an issue with two different incoming services on a cisco ASA. We have 2 different applications that are connected to the ASA, the first one is an Tunnel 10.1.0.0 / 16, and the other is a direct connection to our network with subnet 10.1.0.0/17, they are in different ports, they are overlapping and everything is routed back thought the tunnel, there is any way to solve this issue? I tried NAT but only works internally, onece it gets to the r
ā04-01-2024 04:59 AM
What you meaning via tunnel ?
You mean there is static route toward tunnel? Or it is IP of tunnel itself?
MHM
ā04-01-2024 05:04 AM
It is routed through the tunnel
ā04-01-2024 05:07 AM
Then using NAT must work I think' but there is note as I remember' you can not use VTI interface in NAT you need to use ANY instead
MHM
ā04-01-2024 05:11 AM
Where should I apply the NAT, on the first source?
Source 1 : 10.0.0.0 /17
Source 2 : 10.0.0.0/16
ā04-01-2024 10:46 AM
Tunnel 10.1.0.0 / 16 <- this need NAT
Not direct connect.
MHM
ā04-01-2024 05:07 AM
Hello,
post the running configuration (sh run) of your ASA...
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide