Can you post a sanitized

Narender.Sing · ‎10-16-2014

Hello ,

I am getting one issue , I have two routers , Router A and Router B , Router A and Router B are having Site to Site connectivity ,

Now HOSTS behind Router A wants to Access Services Behind Router B , And To access Services Behind Router B , Access is given to the LAN ip of Router B only , So if any one wants access to services behind Router B , It has to be PATted to the LAN IP of router B ,

I tested VPN tunnel is working fine as , However i am not able to send traffic to services behind router B with PAT ,

Please Help .

Benjamin Crites · ‎10-20-2014

Can you post a sanitized configuration please, ill be able to help.

If i had to guess, your having issues with your NAT statements. Hypothetically if Router A's LAN address is 192.168.1.0 and Router B's LAN address is 192.168.2.0 then you should have similar statements below for your natting.

(On router A)

ip access-list extended NAT

deny ip 192.168.1.0 0.0.0.255 192.168.2.0

permit ip 192.168.1.0 0.0.0.255 any

(On router B)

ip access-list extended NAT

deny ip 192.168.2.0 0.0.0.255 192.168.1.0

permit ip 192.168.2.0 0.0.0.255 any

CIsco router PAT not working after S2S connection