Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
266
Views
0
Helpful
1
Replies

ipsec together with outside NAT

etxnreg
Level 1
Level 1

‎01-08-2008 09:48 AM - edited ‎02-21-2020 03:28 PM

Hi,

I have small office that is connected to the main office over a ipsec tunnel.

On the main office lan I have a server that only accept traffic from the main office inside lan.

Therefor I need to NAT incoming traffic from the ipsec tunnel with a new source address (a address from main office inside).

The ipsec tunnel is up and working.

How should the NAT look like?

I have tried with the "ip nat outside source "command, but it did not work completely (the traffic was NATed but when the response come the traffic was not sent back in to the tunnel.

Regards Niklas

Labels:
0 Helpful
1 Reply 1

didyap
Level 6
Level 6

‎01-14-2008 12:53 PM

You have to do NAT both ways and make sure that the config for ipsec tunnel is proper to allow the reply traffic to be sent via the tunnel. Following link may help you

http://www.cisco.com/en/US/docs/security/asa/asa70/configuration/guide/ike.html

0 Helpful
Customers Also Viewed These Support Documents