I have a bit unusual VPN connection, where its crypto map's access-list contains public addresses:
crypto map CRYPTO 20 ipsec-isakmp
set peer 184.108.40.206
set transform-set NAMEMOB
match address 102
access-list 102 permit ip host 220.127.116.11 18.104.22.168 0.0.0.63
That is required by that company.
22.214.171.124 is my server. I have to relocate it behind the router, so I have to nat it.
I am going to include the following statement in my router's conf file:
ip nat source static 10.100.23.45 126.96.36.199
What I do not know is how to limit acccess to this server? Which statement I have to inlude in my input acl on my outside interface?