Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
564
Views
0
Helpful
1
Replies

NAT for IPsec traffic through ISR

ssrzaidi14
Level 1
Level 1

‎05-23-2021 08:58 AM

I have a IPsec tunnel between Site A and Site B. I have applied policy based routing to send all traffic of  192.16.10.100 to site B.

On site B, I want to use NAT to forward traffic of 192.168.10.100 received from tunnel to internet. 

Remaining all users of subnet 192.168.10.0 are using internet from site A where as only 192.168.10.100 has to go to SITE B via tunnel and then use internet of Site B.  The tunnel between SITE A and SITE B is established via tunnel.

 

 

SITE B

interface GigabitEthernet0/1/0
ip address 173.240.184.126 255.255.255.252
load-interval 30
negotiation auto
crypto map GCX_MAP
end

 

 

Labels:
Preview file
11 KB
0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎05-23-2021 10:01 AM

we need to know the following configuration what is the content of GCX_MAP

 

or use below example - split-tunnel (remove IP address from that list) so that will use full cone of IPSEC running for Corporate and Internet traffic, (make sure if you have a proxy in your environment, may have side effects)

 

https://www.cisco.com/c/en/us/support/docs/routers/1700-series-modular-access-routers/71462-rtr-l2l-ipsec-split.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents