I have a 9504 with separate VRF's per customer, each customer had RFC1918 address space - so can overlap.
I also have another VRF that's used as "common services" out of RIPE ip space. I want to "leak" routes from the customer vrf's to the common services (CS) and back allowing a customer to access CS for services they need, leaking using simple export/import of the RT's.
Issue is the return traffic could obviously be an issue as there could be multiple customers with the same ip/subnet. So what I wanted to do was NAT the traffic before it leaves the customer VRF to a RIPE ip I will assign.