- Silver, 250 points or more
I have the following challange and I can solve it partially only.
I need to connect two sites through ipsec L2L and apply some NAT back and forth.
The remote network is 10.1.0.0/24 my inside network is 192.168.1.0/24. The remote site cannot send traffic to 192.168.1.0 because this subnet is used on their network. So they are going to send the traffic to 10.10.1.1 for ftp and 10.10.1.2 for http. On my side I have 192.168.1.30 as ftp and 192.168.1.31 as http server. On my side when the traffic comes I have to translate the destination of 10.10.1.1 and 10.10.1.2 to 192.168.1.30 and 192.168.1.31 respectively.
I also have to send back some traffic to the remote site with source of 10.10.1.3 (from 192.168.1.30 and 192.168.1.31). So it means it is some kind of asymetric NAT. The question is whether it is possible or not? If possible how to approach it?