I am having a problem setting up a L2L tunnel with a partner. I am using a ASA 5520 running 8.0.4.
Both sides of the tunnel are using the subnet 10.30.x.x/16. The network list on my side of the tunnel will have the nodes 10.0.194.1, 10.0.194.5, 10.0.194.10 and 10.0.194.11. I need to allow these four nodes thru the tunnel to communicate with the remote subnet 10.30.x.x/16. However, the 10.30.x.x/16 subnet also exists on my local network. How do I configure the tunnel to make this happen? Can I NAT before the tunnel? For example, could I route all traffic destined for this tunnel to the 172.16.32.x/24 subnet and when the ASA sees traffic destined for this subnet the ASA will perform the NAT and send it to the proper destination for this tunnel?
Would this config be the right way to go?
access-list PNAT1 extended permit ip 10.0.194.1/32 172.16.32.1/32
BenefitsDocumentationPrerequisiteImage Download LinksLimitationsSupported PlatformsLicense RequirementsTopologyStep-By-Step ConfigurationConfigure Virtual ServiceActivate the virtual service and configure guest IPsConfiguring UTD (Service Plane)Configurin...
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...