ive got a strange behavior with static nat for example mailserver forwarding.
First i tried was adding the following line:
ip nat inside source static tcp 10.10.10.2 25 interface Dialer0 25
Everything worked fine, except the point that i couldnt smtp through VPN because of the NAT static which overrides my exemption and the fact that i got really hihj pings /lags on the outside Iface bouncing between 60-900ms.
So i read cisco whitepaper http://www.cisco.com/warp/public/707/static.html
And found out that i have to use a route-map to exempt VPN traffic from the static NAT to solve the Problem with SMTP thorugh VPN. The result was smtp worked through VPN and also through WAN, the bad aftertaste was everything worked fine except surfing in WWW and the lags were history, but i wasnt able to surf anymore. The Lines i added are the following:
no ip nat inside .....
ip nat inside source tcp 10.10.10.2 25 XXX.XXX.XXX.XXX 25 route-map RMAP_MX
see the config attached.