10-18-2008 09:50 AM - edited 03-03-2019 11:59 PM
While configuring easy vpn in nem mode with asa 5510 and a 1800 SERIES router,it has been said that intersting traffic should not be natted.How does this traffic goes to the internet with private ip addressing if the 2 sites are link by internet ?
example:
access-list no-nat extended permit ip 172.22.1.0 255.255.255.0 172.16.1.0 255.255.255.0
Solved! Go to Solution.
10-18-2008 02:33 PM
The traffic is tunneled so the private IP addressing is never seen on the Internet. So the source and destination IP addresses of the packets when they are the Internet are the outside interface of the ASA and the outside interface of the 1800.
The IP header with the source and destination private IP addresses ie. 172.22.1.x & 172.16.1.x are only visble once the outer IP header has been removed and it is the ASA and 1800 that remove and add the outer IP header.
Jon
10-18-2008 02:33 PM
The traffic is tunneled so the private IP addressing is never seen on the Internet. So the source and destination IP addresses of the packets when they are the Internet are the outside interface of the ASA and the outside interface of the 1800.
The IP header with the source and destination private IP addresses ie. 172.22.1.x & 172.16.1.x are only visble once the outer IP header has been removed and it is the ASA and 1800 that remove and add the outer IP header.
Jon
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide