site to site vpn and PAT - help

Unanswered Question
Jun 11th, 2009

Hi all

Is it possible to have the source of my vpn tunnel as 1 address that has been overloaded? if so, how would I do this, cause normally you have to overload to an interface, would I do it to a pool of 1 address, or can I overload the tunnel address for the site to site tunnel? please advise.



I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Todd Pula Thu, 06/11/2009 - 06:21

You can use PAT to hide the originating source IPs. Overloading can be achieved via interface, IP address, or range of addresses. You will need to make sure that your interesting traffic ACLs reference the post-NAT source address.


This Discussion