I have a bit unusual VPN connection, where its crypto map's access-list contains public addresses:
crypto map CRYPTO 20 ipsec-isakmp
set peer 126.96.36.199
set transform-set NAMEMOB
match address 102
access-list 102 permit ip host 188.8.131.52 184.108.40.206 0.0.0.63
That is required by that company.
220.127.116.11 is my server. I have to relocate it behind the router, so I have to nat it.
I am going to include the following statement in my router's conf file:
ip nat source static 10.100.23.45 18.104.22.168
What I do not know is how to limit acccess to this server? Which statement I have to inlude in my input acl on my outside interface?