12-18-2011 07:44 PM - edited 02-21-2020 05:46 PM
How can Dynamic NAT works after IPSec VPN established?
As the attachments description. If I wanna flow the traffic from PC1 to any destination through R2 via IPSec tunnel, does this possible? If this solution is possible,how to handle the NAT issues between PC1 and R2?
12-21-2011 07:13 PM
Does anyone can provide some information to help resolve this problem,many thanks!
12-22-2011 04:26 AM
Your configuration should look like -on R2. This will U turn of traffic if you want to use R2 as gateway router.
But i do not see any good reason for doing this since you internet connectivity on both sites.
interface Loopback0
ip address 10.11.0.1 255.255.255.0
ip nat inside
ip virtual-reassembly
access-list 150 permit ip 192.168.100.0 0.0.0.255 any
route-map VPN-Client permit 10
match ip address 150
set ip next-hop 10.11.0.2
ip access-list extended Internet_Access_List@Fe0/0
deny ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
permit ip 192.168.10.0 0.0.0.255 any
permit ip 192.168.100.0 0.0.0.255 any
ip access-list extended r1vpn_flow
permit ip 192.168.10.0 0.0.0.255 192.168.100.0 0.0.0.255
Thanks
Ajay
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide