Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
468
Views
0
Helpful
1
Replies

NAT - EZVPN

tomas roberton
Level 1
Level 1

‎01-02-2014 04:36 AM

Hello,

Wondering if somebody can help me with a NAT issue I am having on our ASA.

Background info.

We have a remote site connected using EZVPN to our ASA in our head office.  Our CCTV provider would like to access the CCTV system on site externally.  What I would like to achieve is to create a NAT rule that translates an external ip address (212.x.x.x) to an internal address (172.16.216.56)

I have tried creating a network object and applying a static nat to this and i have experimented with differents combinations for source/destinations on the advanced NAT page.

Is there something I am missing.  I thought that this configuration would require (Outside,Outside).

I have enabled "enable traffic between two or more hosts connected to the same interface"

Our ASA version is 8.4

Thanks

tom

Labels:
0 Helpful
1 Reply 1

mahmoudyounes
Level 1
Level 1

‎01-02-2014 08:55 AM

#access-list number ex(100) permit ip 212.x.x.x  255.255.255.0 ip local pool vpn 255.255.255.0

#access-list number ex(100) permit tcp ip local pool vpn 255.255.255.0 172.16.216.56 255.255.255.0 eq port cctv cam

#nat (inside) 0 access-list numer ex (100)

0 Helpful
Customers Also Viewed These Support Documents