I'm stuck in a little bit of a problem here, maybe someone can help me.
I have on central office network with a PIX515E, this firewall acts as an Easy VPN Server.
on the other side I have multiple ASA5505 acting as Easy VPN Clients in NEM Mode which are dialing in.
Behind all these ASA's there are one or two server appliances.
The goal here is that we can roll out all these server appliances each with one ASA's onto the internet and they are automatically calling home and establishing a VPN, so we can manage them from our office.
So far it's not that complicated, but the tricky thing is that all the server appliances we want to mange have exactly the same IP on their management interface.
Is there the possibility to mask or NAT the IP on the mgmt interface of the server towards the easyVPN connection per username?
Maybe it doesn't have to match with the username, if it would be possible to do this hardcoded in the ASA5505 it already would help a lot.
I've attached a quick visio picture of the layout.
thanks for your answers