I need to establish an IPsec Lan-to-LAN tunnel between an ASA and a Cisco router.
I also need to NAT both LANs on both sides when the traffic goes through the tunnel.
I know how to do ''Policy NAT'' on the ASA, so that you can define with an ACL and with a NAT/GlOBAL or STATIC command you can define the policy, and then the CRYPTO ACL defines the traffic from the translated addresses...
My question is on the Router side...
How do I do Policy NAT on the router?
I have tried creating a pool of addresses for the INSIDE LAN but I'm having some problems.
Can I establish the tunnel from either side (ASA or Router)? I ask this because if there's no translation established, I cannot communicate with the device on the other end...
Whay I want to accomplish is to be able to NAT on both sides (ASA & Routers) and be able to establish the tunnel from either side... Is this possible and how?