2 IPs on 1 Interface

Unanswered Question
Oct 5th, 2008
User Badges:

I want to bind two Ips on a single interface, basically i have a site to site vpn and other side wants me to inject uisng a perticular private IP. I have nat enabled I am using 192.168.1.0/24 and other site wants me to inject 192.168.211.0/29 Please let me know how to perform this.


I guess i have two options


Oplicy based Nat

Applying 2 Ip on 1 interface


Please suggest me a better

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
JORGE RODRIGUEZ Sun, 10/05/2008 - 13:12
User Badges:
  • Green, 3000 points or more

best is to do it through policy nat as you indicated, assume your source/inside is 192.168.1.0/24,if other end of tunnel wants you to come in NATed as 192.168.211.0/29 then you need the policy nat and appropriate acls for interesting traffic.


Something similar as the exmaple link bellow.


access-list new extended permit ip 192.168.211.0 255.255.255.248


access-list policy-nat extended permit ip 192.168.1.0 255.255.255.0


static (inside,outside) 192.168.211.0 access-list policy-nat


plus the cryptop map statements etc..



bellow is a link with good example , this link pertains to when you have overlaping networks between tunnels but the principle is almost the same.



http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00808c9950.shtml



Rgds

Jorge

Actions

This Discussion