Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
331
Views
0
Helpful
3
Replies

NAT IP-SEC VPN Problen

Steve Babcock
Level 1
Level 1

‎10-04-2009 06:44 AM - edited ‎03-04-2019 06:14 AM

I have an 871W

Site to Site IP_SEC VPN is set up and working with a remote Linksys BEFDX41 router.

Easy VPN Server is also set up and working

Problem :

Traffic from the Remote site over the site-to-site VPN works

BUT if I add a static NAT entry on the public interface mapping to an internal IP (eg : route port 80 to an internal server) - traffic to that port times out on the remote side.

Labels:
0 Helpful
3 Replies 3

thiru.vel10
Level 1
Level 1

‎10-04-2009 07:15 AM

HI Try this below command and let me know

Ip nat source static ( internal server ip ) ( public external IP )

0 Helpful

Steve Babcock
Level 1
Level 1
In response to thiru.vel10

‎10-04-2009 08:14 AM

Sorry - no go on that one ... same result

As soon as I remove the NAT rule, ti's ok

0 Helpful

Jon Marshall
Hall of Fame
Hall of Fame

‎10-04-2009 09:07 AM

Could you provide more details ie.

when it works what IP address are you connecting from and to what IP address are you connecting.

When it doesn't work what IP address are you connecting from and to what IP address are you connecting.

What do your crypto acls look like ie. if you map an internal server to a different IP are you then including new IP in your crypto map acl ?

Jon

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card