NAT inside VPN

Unanswered Question
Aug 18th, 2009

I have a remote ASA. This has a site-to-site VPN tunnel to the core ASA. The remote site LAN subnet is a duplicate of one already known in the core. For various reasons we can't change either at the moment.

I'm trying to find a way that we can NAT the remote site (on the remote ASA maybe) to a different pool of addresses before passing the traffic down the VPN tunnel. I've been scratching my head trying to work out how to do this. Has anyone got a suggestion? thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
sunil.aroraa Tue, 08/18/2009 - 07:31

It is same as you are doing nat for any subnet.

Use the nat and global commands to NAT the duplicate subnet with new subnet or PAT with signle IP or even with inside interface IP.


This Discussion