I am using a ASA 5520, I have a VPN setup already to a remote office using subnet 172.16.x.x/16 and it all works well and I don't want to change this. Now I need to setup another VPN to another office which is also using 172.16.x.x/16. This new office need to connect to servers where I'm based (where the ASA is).
How can I get round this?
Would I create a VPN using an IP range that isn't used anywhere else for this regional office?
HQ (me) - 192.168.21.x/24
Remote site - 192.168.31.x/24
That way phase 2 will come up although nothing would work.
Now would I need to NAT and where? The remote site that is on 172.16.x.x (now on 192.168.31.x) needs to connect to about 10 servers on 192.168.21.x/24
I've never done NAT before and it sounds difficult.