We have just set up a VPN (well almost) between my office in the UK and our US office. We need to connect to resources on the US side from the UK.
The US team have provided the equipment to do this, problem is we have a few networks our side that are the same IP range as the US so we wondered if we could NAT the UK traffic to a range that none of us have? Here is the setup:
2 external IP's, 1 connects to a firewalls outside port, the other to another firewalls outside port (we have 2 firewalls for redundancy) the inside ports of the firewalls connect to a 1811 router (Fast Ethernet 2 and 3). The 1811 routers Fast Ethernet 1 port connects to our LAN and has an IP of 192.168.17.1. We route the UK traffic that needs the US resources to 192.168.17.1.
Can we NAT all our traffic that passes through the LAN port on the 1811 to an IP NAT Pool so the US see our traffic as one range? I assume it would have to be the range of the the 1811 LAN port range (192.168.17.0/24)?
That way no the US only see us from one range that doesn't clash with their subnets.