PAT at VPN 3030 concentrator

c.ohliger · ‎06-05-2007

Hi,

has anyone tested the PAT (NAT for LAN-to-LAN tunnels). In the documentation i can?t find a hint if the Translated network should be one IP or can be a range. The only point i can find is this:

PAT LAN-to-LAN NAT rules are Edenic rules with Port Address Translation.

What is a Edenic rule ?

Thanks for any help/hint !

Christoph

ggilbert · ‎06-11-2007

Christoph,

I have done this configuration in the lab and it works.

So, here's the scenario - lets say when the remote network is 10.10.10.x/24 - your local network is 20.20.20.x/24 and you want the local network to be translated as 30.30.30.2/32

Then here are the things you would add on the NAT translation section.

Select PAT.

Local Network: 20.20.20.0 WCM: 0.0.0.255

Translated Address: 30.30.30.2 WCM: 0.0.0.0

Remote Network: 10.10.10.0 WCM: 0.0.0.255

On the LAn to LAN section when you configure the Local and remote work, your local network would be 30.30.30.2 WCM: 0.0.0.0 and remote network would be 30.30.30.0 WCM: 0.0.0.255

WCM - Wild Card Mask

Hope this explains what you are trying to do.

Cheers,

Gilbert

c.ohliger · ‎06-11-2007

Hi Gilbert,

thanks for your answer !

I have some additional questions:

- I assume you tried to use this PAT with several internal clients, my installation failed after the second client is trying to use PAT.

-Have you tried to use several IPs for the PAT, for example Translated Address 30.30.30.128 WCM: 0.0.0.127 ?

- Do you know what edenic from the documentation means ?

- What version are you using on the concentrator ?

Thanks

Christoph