Currently I have a remote site that has an internal ip address of 192.168.1.0/24. There are a few clients from this net that connect to our HQ using VPN client software and terminate on a PIX 501. The problem is they need to connect to boxes that are on a HQ internal network of 192.168.1.0/24. So for a quick fix we droped in this PIX 501and placed the inside interface on a vlan with an address of 172.24.8.129/26 ( connects to a 6509) The VPN clients send to 172.24.8.66 & 65 then on the vlans we NAT them over to 192.168.1.5 & 7 address. I want to migrate our remote site connections like this: I have a remote site with some users connecting with VPN client software to a PIX 525 at our HQ. The internal IP of the remote network is 192.168.1.0/24, the problem is the network that they need to connect with internally at HQ is also 192.168.1.0/24. The PIX 525 connects to a 6509 and we have multiple VLANs off of this which holds the HQ internal 192.168.1.0/24. Re-addressing is not an option for now. I need help on how to setup NAT on the 6509. It has MSFC & PFC not 2. I hand out 172.22.4.1/24 to the clients when they connect over the VPN. However as you can see the 192.168.1.0 will not route off net. Any Ideas would be a great help!!