Connecting via VPN from a 10-net to a 10-net - unrelated
I have a dilemna. A department in my company needs to access the database of another company. They have given us permission to VPN into their system (from the PC - either through our Internet link or through a modem). Only problem is that our company uses the Class A addressing schema of 10.x.x.x, and the address we need to access through the VPN is a 10.20.xx.xx. Disconnecting from our local netowrk while connecting to this 10.20... network is not an option, since our users still need access to their LAN resources (like printers, etc...)
We currently use Novell's Bordermanager for incoming VPN, but that has little bearing on this.
Re: Connecting via VPN from a 10-net to a 10-net - unrelated
If you use a PIX Firewall, there is a feature called alias that performs destination network address translation (DNAT). You would tell your users on your network that to get to the database server, go to a bogus address like 192.168.1.1 (or use DNS locally to publish that address). In the PIX you DNAT that to 10.20.x.x. Other than that, one of you will have to renumber.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...