Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
436
Views
5
Helpful
2
Replies

cant ping Static NAT private address in Site to Site IPSec VPN

angel.tagra
Level 1
Level 1

‎09-16-2004 12:21 AM - edited ‎02-21-2020 01:20 PM

I have 2 sites A and B, A is using Cisco IOS and B is using PIX. IPsec tunnel already up and running. Site A is using cisco 2600 and site B is PIX. Both sites can ping each other private ip address.

Also on both site NAT is configured for internet and static NAT for Web Server. Site A is configured with static NAT for the mentioned Web Server. All internet connectivity are working fine. But Site B wont be able to ping to the private ip address of site A wherein static NAT is configured. Everytime I take the static NAT then site B would be able to ping the private IP address.

My question is what kind of static NAT should I apply so that both internet and IPSec traffic would be able to go thru. Thanks.

Labels:
0 Helpful
2 Replies 2

a.awan
Level 4
Level 4

‎09-16-2004 02:14 AM

Read the following article which explains how static NAT can cause issues in an IPSec configuration. The problem occurs because of the NAT Order of operation. The article also provides a solution for it:

http://www.cisco.com/en/US/tech/tk583/tk372/technologies_configuration_example09186a0080094634.shtml#loopback

angel.tagra
Level 1
Level 1
In response to a.awan

‎09-16-2004 07:03 PM

Thanks a million it really solve my problem.

0 Helpful
Customers Also Viewed These Support Documents