Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
424
Views
0
Helpful
1
Replies

browsing and tunnel from a same host

habibnoubissi
Level 1
Level 1

‎12-01-2012 01:21 AM

Hi guys

I want to know how I can configure a host involved to a vpn L2L (nat0) to also browse on the internet (nat1). I have an asa with IOS version 7.2.

your help will be appreciate.

regards

Labels:
0 Helpful
1 Reply 1

Eugene Korneychuk
Cisco Employee
Cisco Employee

‎12-01-2012 02:02 AM

Hello,

You can do it in the following way:

VPN:

access-list nat0 permit ip 10.0.0.1 255.255.255.0 172.16.0.0 255.255.255.0

nat (inside) 0 access-list nat0

And then just pat your host (or network):

nat (inside) 1 10.0.0.0 255.255.255.0

global (outside) 1 interface

nat0 will be evaluated only for accessing remote end.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents