01-08-2013 12:07 AM
Hi all,
I have created a site-to-site VPN between a ASA5505 and a ASA5510 without problems.
This is the setup:
-SiteA
subnet 192.168.0.0/23
-SiteB
subnet 10.142.0.0/24
subnets routed at SiteB: 10.143.0.0/16, 10.144.0.0/16, 10.144.0.0/16, 10.144.0.0/16, 10.144.0.0/16,
I want to hide 192.168.0.0 at SiteB for two reasons.
1. reason: I want to hide subnet 192.168.0.0 for security reasons
2. reason: I don't wan to route the 192.168.0.0 subnet at SiteB.
It would be nice if all traffic from SiteA to SiteB is shown at SiteB as comming from 10.142.0.3 (which is the LAN address of the ASA5510)
How can I achive this? through some kind of NAT?
01-17-2013 06:51 AM
Anyone?
01-17-2013 08:29 AM
Yes, I would NAT the 192.168 networks to 10.142. network, this way site B will not be able to see the real IP address of site A. As I have no lab that is free at this moment, I can't try this scenario for you,so give it a try and let us know the result,
01-17-2013 09:14 AM
What version of IOS are you running on the ASA's 8.3 and/or above or below? You can esily get that done by doing a NAT and updating the interesting traffic in the ACL's accordingly.
01-17-2013 09:56 AM
01-17-2013 10:50 PM
Running ASA version 8.2
@rizwanr74: Will try this today and get back with the result.
01-22-2013 08:39 AM
Hi Jesper,
Please update, how did it go?
thanks
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: