We have a site to site VPN which works perfectly ok. The host IP on our end is 192.168.35.10\32 which our vendor is accessing over the VPN tunnel.. no issues there.
Recently we had to modify the IP address of the host to 192.168.45.10\32 and instead of asking the vendor to modify the security policy on his end we wish to do the translation on our end, ie. NAT 192.168.35.10 to 192.168.45.10
In other words, the vendor will still access 192.168.35.10 from their end and our firewall should translate it to 192.168.45.10
Both IP's are on the inside of the firewall.
How does the nat look like?
I believe there is no need to modify the VPN config but only add a nat translation, is that true?