Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
Bookmark
|
Subscribe
|
614
Views
0
Helpful
2
Replies

Route traffic comming inside the WAN to outside the WAN(Same interface)via IPSec tunnel

Ravindu Jayalath
Level 1
Level 1

‎12-23-2009 08:57 PM - edited ‎03-04-2019 07:03 AM

Presentation1.bmp

This is our test setup. Any source will hit the ASA5505 Wan interface to a public IP lets say 194.79.112.3. We need to NAT this IP 194.79.112.3 to a local IP of the other side of the LAN (behind Linux firewall) lets say 172.17.100.2 (194.79.112.3 <==>172.17.100.2). How can we do that? Interesting traffic of the IPSec is trafficc generated between 192.168.0.0/16 and 172.17.100.0/24.

So simply what we need to do is when a user hits to the 194.79.112.3 the destination IP of the request should be changed to 172.17.100.2 and the source IP of the request shuold be changed to 192.168.0.0/16 range IP and request shuold be forwarded out of the WAN interface so that traffic will be intersting traffic of the IPSec and will go to the required destination via IPSec tunnel.

We need to know whether this is possible and any help from any one of you will be highly appreciated.

Thanks in advance.

Labels:
37225-Presentation1.bmp
Preview file
676 KB
0 Helpful
2 Replies 2

Marwan ALshawi
VIP Alumni
VIP Alumni

‎12-28-2009 04:02 AM

i think you need to do nat hairpnning and also play with your interesting traffic of the VPN !!

see the bellow link might help you about the nat hairpnning in ASA

https://supportforums.cisco.com/message/1019512#1019512

good luck

if helpful Rate

0 Helpful

Ravindu Jayalath
Level 1
Level 1
In response to Marwan ALshawi

‎01-03-2010 08:06 PM

can you describe this more if possible please. Thanx.

0 Helpful
Top