My newest VPN peer tells me that he already has reserved the IP addresses we use, so now I need to translate...
How do I get my PIX to pretend my 10.0.0.0/24 subnet is, say, 10.40.40.0/24?
Cisco PIX Firewall Version 6.3(5)
easiest way is t odo it like this:
! define traffic to be translated
access-list NAT-west permit ip 10.0.0.0 255.255.255.0 192.168.140.0 255.255.255.192
! A pool of addresses to use
global (outside) 9 192.168.140.1-192.168.140.254
! policy nat statement
nat (inside) 9 access-list NAT-west
! remove nat exemption
no nat (inside) 0 access-list nonat